Hello Aydiin Do let me know if things have started working for you... Actually I would assume that in order to use a smart card on the client you would not need to make any changes on the radius server configuration. just that the application which is reading certificates on the client should be configured to use the correct CSP. I am assuming the certificate in the smart card is from the CA configured on the freeradius server. I hope I understood your question correctlly!!! Cheers!! Suraj ----- Original Message ---- From: Aydın KOÇAK <akocak@turkom.com.tr> To: "freeradius-users@lists.freeradius.org" <freeradius-users@lists.freeradius.org> Sent: Tuesday, 4 November, 2008 9:48:38 PM Subject: EAP - TLS Client Certification Stored Removable Media Hello All; I have a question about EAP - TLS . How can I configure client certification stored from removable media (ex: usb memor, smartcard, etc..). I have already used EAP - TLS with client certification stored on Windows (cliet) but i need a solution that user can authenticate when insert his usb memory and logout when remove his usb memory ? My system running with EAP - TLS authentication and LDAP authorization and clients are use 802.1x ... Thank You For Your Relation, Aydin Kocak, TURKOM. - List info/subscribe/unsubscribe? See http://www.freeradius..org/list/users.html Connect with friends all over the world. Get Yahoo! India Messenger at http://in.messenger.yahoo.com/?wm=n/