Server certificate confusion

Nick Howitt nick at howitts.co.uk
Tue Apr 17 11:28:32 CEST 2018


On 17/04/2018 09:57, Marek Zarychta wrote:
> W dniu 2018.04.17 o 10:46, Nick Howitt pisze:
>> Do you know what I'm doing wrong?
> Hi Nick,
>
> you should have installed CA certificate on the client machine to
> succeed with authentication.
>
> Regards,
>
eapol_test runs on the server and references the certificates directly. 
This is the eapol_test config file:

    network={
         ssid="DoesNotMatterForThisTest"
         key_mgmt=WPA-EAP
         eap=TLS
         identity="test"
         password="test"
         ca_cert="/etc/raddb/clearos-certs/ca.pem"
         client_cert="/etc/raddb/clearos-certs/cert.pem"
         private_key="/etc/raddb/clearos-certs/key.pem"
         eapol_flags=3
    }

The certs are in a non-standard folder but /etc/raddb/mods-available/eap 
has been adjusted to suit



More information about the Freeradius-Users mailing list