Can I use two or more freeradius server certificates for the same virtual site?
thor.spruyt at telenet.be
Fri Nov 2 18:49:57 CET 2018
----- Original Message -----
> From: "work vlpl" <thework.vlpl at gmail.com>
> Yes, I know about it. But in my case I can not issue new server
> certificate from the same CA. That CA was bought by other CA, and now
> new certificates are signed with different root certificate. This
> cause some problems. Clients that verify server certificate using CA
> certificate that stored in radius configuration, now has broken trust
Your CA should give you ample time for such a change.
Clients should be reocnfigured to trust both CAs before you start using the certificate by the new CA.
What you could try to do given your situation is to keep track of which client accepts which certificate and offer them that one.
More information about the Freeradius-Users