13 Mar
2008
13 Mar
'08
6:58 a.m.
usawebbox@fastmail.fm wrote:
Except that my server cert does contain a CA cert. I'm not 100% sure it's sufficient, because it was issued from an intermediate CA (it needs to be the signer(s) not the issuer, right?), so I went to another CA got a webserver cert in pem format directly from the root. Downloaded the root CA cert in pem format and appended them.... same error:
You generally want to use self-signed certs for 802.1x. See raddb/certs/README
Do we know this mode is working (No CA_File, but certificate file with server cert + ca cert)? In any case, I'd be willing to experiment more.
It should work in 2.0.2. Alan DeKok.