Hi Rui Ribeiro, For TLS configuration which certificated need to install on client side. Regards, Prasad Jadhav Alepo Technologies Pvt. Ltd. www.alepo.com<https://west.exch021.serverdata.net/owa/redir.aspx?C=519fb39324ec491582fa0bf567c118f1&URL=http%3a%2f%2fwww.alepo.com> [Description: Description: cid:image001.png@01CAF37B.1103A920] _____________________________ Office: +91 22 61085000 Extn - 217 Skype ID : prasad9920 From: freeradius-users-bounces+prasad.jadhav=alepo.com@lists.freeradius.org [mailto:freeradius-users-bounces+prasad.jadhav=alepo.com@lists.freeradius.org] On Behalf Of Rui Ribeiro Sent: 20 November 2014 14:40 To: FreeRadius users mailing list Subject: Re: 4. Freeradius version 2.1.12 with TTLS support (Prasad Jadhav) Hi Prasad, Do not use 2.1.12, it is old and has known bugs. Install 2.2.6. You are not telling us what protocol you are using to authenticate. For TTLS, you do not need certificates installed on the client side, only for EAP-TLS. However, I what you probably want is really EAP-TTLS; decide what backend are you using to authenticate and elaborate better your next question please. Regards, -- Rui Ribeiro Senior Sysadm ISCTE-IUL https://www.linkedin.com/pub/rui-ribeiro/16/ab8/434 ------------------------------ Message: 4 Date: Thu, 20 Nov 2014 04:37:33 +0000 From: Prasad Jadhav <Prasad.Jadhav@alepo.com<mailto:Prasad.Jadhav@alepo.com>> To: "freeradius-users@lists.freeradius.org<mailto:freeradius-users@lists.freeradius.org>" <freeradius-users@lists.freeradius.org<mailto:freeradius-users@lists.freeradius.org>> Subject: Freeradius version 2.1.12 with TTLS support Message-ID: <b223a7693f66454f8160761343be73be@BY1PR0801MB0983.namprd08.prod.outlook.com<mailto:b223a7693f66454f8160761343be73be@BY1PR0801MB0983.namprd08.prod.outlook.com>> Content-Type: text/plain; charset="us-ascii" Hi, I configured the freeradius version 2.1.12 with TTLS support. Note: for testing purpose using self signed certificate having following question 1. do I need to create certificate for per client machine base or per client username base. 2. Which certificates need to install on client side (OS: Windows 8) for TTLS Regards, Prasad Jadhav [https://ssl.gstatic.com/ui/v1/icons/mail/images/cleardot.gif] ________________________________ This email (message and any attachment) is confidential and may be privileged. If you are not certain that you are the intended recipient, please notify the sender immediately by replying to this message, and delete all copies of this message and attachments. Any other use of this email by you is prohibited. ________________________________