We need to see the log from FreeRADIUS ("radiusd -X")

There are a couple of reasons that all certs will be rejected

* CA is not designated a CRL issuer
* CRL is out of date (CRLs have limited validity period)
* something else

On 9/14/05, Ben Dowling <bendowling@lineone.net> wrote:
Hi,

I have managed to get EAP-TLS authentication working with freeradius
1.04 and a windows XP supplicant. However, when I enable CRL all
certificates seem to be rejected not just those in the CRL. Could anyone
help me with this issue? Let me know if you require any more
information.

Cheers, Ben

-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html