final question about client certs using eap-tls (was: cert bootstrap bug?)
sergioyebenes at alumnos.upm.es
Tue Aug 19 17:31:06 CEST 2008
> also was so many others. At this time i have got one eap module which
> authenticates users under a PKI. My client certs are issued by root ca
> (ca.pem) and everything works. I can manage the crl, because it is
> public, and authenticate any user against any server. So my question
> is, what's the final goal of signing certificates with server's? The
> only difference (i think) is about the crl managing, because in my
> case, the authority should provide the crl to the server
> administrators. I don't see any more difference.
Any more goal?
More information about the Freeradius-Users