Fixed the problem, didn't realise the CRL has to be appended to the CA certificate. Cheers On Wed, 2005-09-14 at 08:31 +1000, Ben Walding wrote:
We need to see the log from FreeRADIUS ("radiusd -X")
There are a couple of reasons that all certs will be rejected
* CA is not designated a CRL issuer * CRL is out of date (CRLs have limited validity period) * something else
On 9/14/05, Ben Dowling <bendowling@lineone.net> wrote: Hi,
I have managed to get EAP-TLS authentication working with freeradius 1.04 and a windows XP supplicant. However, when I enable CRL all certificates seem to be rejected not just those in the CRL. Could anyone help me with this issue? Let me know if you require any more information.
Cheers, Ben
- List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
- List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html