freeradius@corwyn.net wrote:
I'm tinkering with my VPN setup using FreeRadius and AD, and getting "Not possible to verify the identity of the server". Some googling shows that message can be related to certificates.
Uh... the documentation on setting up EAP describes what you need to do on the client machine in order for EAP to work. This involves putting the CA cert on the PC.
Some digging through the FreeRadius docs came up with: If FreeRADIUS was configured to use OpenSSL, then simply starting the server in root in debugging mode should also create test certificates, i.e.:
Does this mean that, presuming I never did create certificates, that freeradius could function differently in debug mode than when running not in debug mode?
No. Alan DeKok.