Server Certificate for use with Windows PEAP Clients
Ben Thompson
bt4 at york.ac.uk
Mon Aug 22 19:12:40 CEST 2005
On Mon, 2005-08-22 at 12:12 -0400, Alan DeKok wrote:
> Ben Thompson <bt4 at york.ac.uk> wrote:
> > I have read about the requirement for the certificate to include the
> > Server Authentication (1.3.6.1.5.5.7.3.1) OID in the Enhanced Key Usage
> > section and I would like to know if anyone else has had experience of
> > this.
>
> Yes. Use it, it works.
>
> > I have also heard about the special WLAN certificate available from
> > Verisign which sounds like it will do the job, but I would like to
> > hear from anyone who knows about an alternative as this one is a bit
> > pricey.
>
> See the "scripts" directory. You can create certificates, with the
> OID, for free.
>
> Alan DeKok.
Hi
Thanks for the info. I would like to get a certificate installed that
has been signed by one of the trusted CA's if possible. I am not sure
about the Verisign certificate as they seem to want people to buy online
and download using some sort of automated certificate installation
feature in Internet Explorer on the target machine. As described here :
http://www.microsoft.com/downloads/details.aspx?FamilyID=1971d43c-d2d9-408d-bd97-139afc60996b&DisplayLang=en
Cheers
Ben
More information about the Freeradius-Users
mailing list