Hi, Can somebody tell me, how to include the OID's while generating the client and root certificates. These instructions are in the xpextensions file, it says # Add this to the PKCS#7 keybag attributes holding the client's private key # for machine authentication. How does one do this? Please help. # # File containing the OID's required for Windows. # # http://support.microsoft.com/kb/814394/en-us # [ xpclient_ext] extendedKeyUsage = 1.3.6.1.5.5.7.3.2 [ xpserver_ext] extendedKeyUsage = 1.3.6.1.5.5.7.3.1 # # Add this to the PKCS#7 keybag attributes holding the client's private key # for machine authentication. # # the presence of this OID tells Windows XP that the cert is intended # for use by the computer itself, and not by an end-user. # # The other solution is to use Microsoft's web certificate server # to generate these certs. # # 1.3.6.1.4.1.311.17.2 -- View this message in context: http://freeradius.1045715.n5.nabble.com/how-to-generate-certificate-with-xpe... Sent from the FreeRadius - User mailing list archive at Nabble.com.