Arran Cudbard-Bell wrote:
Use correct key (ca.key, not server.key)
Add in v3 extensions to make it work on Nokia e51, e60, Mobile Windows Clients, Symbian devices. This closes bug #524 Modified files: File: radiusd/raddb/certs/ca.cnf; Revision: 1.2; Date: 2008/03/05 09:54:11; Author: aland; Lines: (+8 -2)
+basicConstraints = CA:true
Really necessary, doesn't that mean the certificate can be used to sign additional certificates if the private key is available ?
Ignore me. This is to generate the Demo CA certificate....*sigh* Do any of these extensions get embedded in Signed certificates? -- Arran Cudbard-Bell (A.Cudbard-Bell@sussex.ac.uk) Authentication, Authorisation and Accounting Officer Infrastructure Services | ENG1 E1-1-08 University Of Sussex, Brighton EXT:01273 873900 | INT: 3900