MA> The contents of my server.pem file using the openssl x509 -text MA> -in server.pem file are shows the hostname of the server as I MA> entered into the server.cnf file. MA> The certificates were created by filling in the ca.cnf and MA> server.cnf details and running 'make'. MA> Steps were taken from MA> http://deployingradius.com/documents/configuration/certificates.html MA> However, I've just spotted that I had the same commonName for MA> both my server.cnf and ca.cnf. Just edited the ca.cnf and now make MA> is failing as I need to revoke the previous MA> certificates.....that's proving to be a struggle. I've been using easy-rsa [part of openvpn] for generating my x509/EAP-TLS certs. It's a lot easier. You might consider it. :) -Greg