And that is good. Windows doesn't need to know who issued that certificate, only radius server does. Ivan Kalik Kalik Informatika ISP Dana 25/1/2008, "orion" <meshkruaj@gmail.com> piše:
its not a problem that windows says about the client certificate : "the issuer of this certificate cannot be found " ?
can the certificate be used in this case ?
On 25/01/2008, tnt@kalik.co.yu <tnt@kalik.co.yu> wrote:
2)or only ca certificate + client certificate ?
the second case the linkage between the ca and client doesnt exist ( as you said "is the server the issuer of the client`s certificate" ).
Link is not needed. Server checks the client certificate to see if it's issued by the server (certificate). Client checks server certificate to see if it's issued by a *known and trusted" CA. Nothing checks client certificate against the CA.
Ivan Kalik Kalik Informatika ISP
- List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html