Freeradius configuration to support EAP-TLS, EAP-TTLS and EAP-PEAP
jwittlincohen at gmail.com
Thu Dec 11 21:37:59 CET 2008
On Thu, Dec 11, 2008 at 9:16 AM, Attou eric <gouroueric at yahoo.fr> wrote:
> Hi Everybody.
> We are having some issues in setting up freeradius to support EAP-TLS,
> EAP-TTLS and EAP-PEAP.
> Our goal is to have our authentication server providing those three
> Auth-Type simultaneously.
> To support EAP-TLS, we generate our CA and certificates via TinyCA.
You can use TinyCA, but you must add the proper extended key usage. Under
Openssl-Configuration in TinyCA put the OID 126.96.36.199.188.8.131.52.1 for Server
Certificates into Extended Key usage, and 184.108.40.206.220.127.116.11.2 into Client
Certificate Extended Key Usage.
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the Freeradius-Users