howto EAP-TLS on freeradius 2.0.2-3 ??

Ivan Kalik tnt at kalik.net
Mon May 5 12:42:29 CEST 2008


> - ca.der ---- no prob, known as an CA in windows
> - server.p12 ---no prob, certicate is valid
> - client.p12 --- !!! windows said something like that
>(excuse my english translation, but i think you'll get
>the message):
>
>--CA
> ---Server
> -------clients:
>
> ---Information about the certificate: ---
> ****this certificate is not valide cause one of the
>certificate authority in the certificate path seems
>not to be allow to deliver certificate, or this
>certificate can not be use as end-user certificate
>*****
>(see attached file)
>

http://technet.microsoft.com/en-us/library/bb331963(EXCHG.80).aspx

It looks like the certificate doesn't have the OIDs needed. They should
be present in certificate details (Details tab). Post radiusd -X to see
what happens.

Ivan Kalik
Kalik Informatika ISP




More information about the Freeradius-Users mailing list