Can freeradius support multiple client CA certificates?

John Dennis jdennis at
Mon Jun 21 19:33:42 CEST 2010

On 06/21/2010 01:01 PM, Zhang, Ge (Gina) wrote:
> John,
> Is it possible to support multiple sets of server certificates so that one group customer would use
> one server CA file?

This is a basic PKI question, not really FreeRADIUS. In PKI there can 
only be one certificate per server. You would have to have different 
servers with different names and addresses.

The purpose of a server certificate is to prove to the client the server 
it is connecting to is really the server it expects and is not a man in 
the middle attack.

There is no way to configure the server to present different 
certificates based on which client is connecting and there really isn't 
much point.

I'm not sure why you would want to do this.

John Dennis <jdennis at>

Looking to carve out IT costs?

More information about the Freeradius-Users mailing list