Advanced WiFi Setup

Guided WiFi SETUP

Before setting up WiFi, you must have started your ISS-Above for the FIRST time using a wired Ethernet connection to your router. See the main Quickstart Guide for how to do that.  Note the IP Address is shown in the lower left of most every information screen displayed.

Access the wifi setup via the ISS-Above’s admin site at:
http://(ip address)/wifiscan

  1. Log in with the default username admin and password nasa
    A list of available WiFI networks will be displayed. (you may need to refresh this page to see all the wifi networks nearby)

  2. Click “connect” button next to the appropriate WiFi network

  3. Enter the passphrase / PSK as appropriate for your WiFi and Save that.

  4. Reboot the device from this page
    http://(ip address)/off

  5. Now remove the Ethernet Cable right away. Shortly after it restarts you should be connected to WiFi (note a different IP address will now be displayed).

  6. If your WiFi does not connect, you will see an error message:
    Undefined IP address. Have you connected to your LAN?

  7. If that happens re-connect the Ethernet cable and Go back to step 1 and make sure that in step 5 you have typed in the wifi password correctly

If you need more advanced control of wifi settings you can directly modify the internal configuration file via
http://(ip-address)/wifi

Advanced WiFi SETUP

If your WiFi is open (i.e. no password needed) or hidden (set to not broadcast) or you are using enterprise WPA security you'll need some special configuration. 

You will need to directly edit the wifi configuration on the ISS-Above.  This is ONLY for advanced use.. as things can get a little "messy"

Instead of running the guided setup above you will bring up the internal wifi settings file on your web admin

http://<ipaddress>/wifi

You will see a bunch of wifi configurations like this:

network={
   ssid="wifi name"
   psk="wifi password"
}

If you have a hidden wifi network (I really hope you don’t… because.. there are many reasons why that’s a bad idea) you will add scan_ssid=1 inside the network block for your wifi. 

e.g.

network={
   ssid="wifi name"
   psk="wifi password"
   scan_ssid=1
}

If your wifi requires NO password (e.g. it is open) add key_mgmt=NONE to your network block as follows (note: it is critical to use UPPERCASE NONE - lowercase will actually stop your wifi from working until you put it to uppercase)

network={
   ssid="wifi name"
   key_mgmt=NONE
}

Enterprise WPA WiFi setup (VERY ADVANCED SETUP)

For a setup that does NOT require a physical CA cert file something like the following should work

network={
      ssid="YOUR SSID"
      proto=RSN
      key_mgmt=WPA-EAP
      pairwise=CCMP
      auth_alg=OPEN
      eap=PEAP
      identity="USER NAME"
      password="PASSWORD"
      phase1="peaplabel=0"
      phase2="auth=MSCHAPV2"
      }

A word of warning!!!!. The Raspberry Pi is extremely sensitive to “unexpected characters or spaces” within the wpa_supplicant.conf setup file (that’s what you are manually editing here). If you add ANY space around any of the “=” signs above that will actually “break” the wifi setup and you won’t be able to fix it until you remove the bad characters and reboot your ISS-Above. If you do end up breaking the wifi setup as long as you can connect to a wired ethernet port you will be able to fix the problem. I am of course always here to help - so feel free to email me any questions - support@issabove.com

For a setup that DOES require a physical CA Cert file.  You will need to generate a PEM file using your security software (you may need to get this from your IT/Security personnel).  Then you will upload that file on to your ISS-Above using the web admin system via

http://<ip-address>/certs 

There are MANY different ways to configure your ISS-Above to connect to an enterprise WPA wifi setup.. this is an example of what one configuration MAY look like.

This is example is for an EAP-PEAP/MSCHAPv2 configuration for RADIUS servers that use the new peaplabel
(e.g., Radiator)
network={
    ssid="example"
    key_mgmt=WPA-EAP
    eap=PEAP
    identity="user@example.com"
    password="your password"
    ca_cert="/etc/cert/ca.pem"
    phase1="peaplabel=1"
    phase2="auth=MSCHAPV2"
    priority=10
}

The above example assumes you have uploaded a file named ca.pem containing your CA cert PEM file via your ISS-Above /certs web admin page.  

Email support@issabove.com for further help - although do understand that we do not have access to an enterprise WPA setup ourselves so our ability to help beyond this information will be very limited.