CRL rejects all certificates
Ben Dowling
bendowling at lineone.net
Wed Sep 14 19:30:22 CEST 2005
Fixed the problem, didn't realise the CRL has to be appended to the CA
certificate.
Cheers
On Wed, 2005-09-14 at 08:31 +1000, Ben Walding wrote:
> We need to see the log from FreeRADIUS ("radiusd -X")
>
> There are a couple of reasons that all certs will be rejected
>
> * CA is not designated a CRL issuer
> * CRL is out of date (CRLs have limited validity period)
> * something else
>
> On 9/14/05, Ben Dowling <bendowling at lineone.net> wrote:
> Hi,
>
> I have managed to get EAP-TLS authentication working with
> freeradius
> 1.04 and a windows XP supplicant. However, when I enable CRL
> all
> certificates seem to be rejected not just those in the CRL.
> Could anyone
> help me with this issue? Let me know if you require any more
> information.
>
> Cheers, Ben
>
> -
> List info/subscribe/unsubscribe? See
> http://www.freeradius.org/list/users.html
>
> -
> List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
More information about the Freeradius-Users
mailing list