15 Sep
2010
15 Sep
'10
4:47 a.m.
Klaus Laus wrote:
Hello, I have one question, is it possible to configure my freeradius server so that only clients with a ca certificate can login themselves with their username and password? I want to configure my freeradius server so that the users can only login after the successfully server certificate validation. At the moment I use EAP-TTLS for authentication, but the options in the clients "servercertificate validation" is optional. I want to use EAP-TTLS and force the ca certificate on the clients.
You can't force the client to validate the CA cert. That is a configuration which needs to be set on the client. Alan DeKok.