problem with CA certificate using mschapv2
Matthew Newton
mcn4 at leicester.ac.uk
Wed Jan 21 13:11:40 CET 2015
On Wed, Jan 21, 2015 at 12:38:31PM +0100, marcos wrote:
> Yes, I was installing. The problem is that I don't know how to prepare
> the CA certificate for the server part. Im using TERENA:
> > If the intermediate certs are not installed on the client, are you
> > sending them (in the right order) from the server?
> Justly is the point where I don't know how to do. Only I discovered how
> to add the CA, but no the Intermediate certificates. I need to prepare a
> certificate joining all or I can mark different?
Try:
Root CA cert installed on the client device.
.pem certificate file on FreeRADIUS containing (in this order):
RADIUS server certificate
Intermediate certifiate
The root CA should not be necessary here to send to the client, as
it already has it and can check the chain it was sent from the
server.
Matthew
--
Matthew Newton, Ph.D. <mcn4 at le.ac.uk>
Systems Specialist, Infrastructure Services,
I.T. Services, University of Leicester, Leicester LE1 7RH, United Kingdom
For IT help contact helpdesk extn. 2253, <ithelp at le.ac.uk>
More information about the Freeradius-Users
mailing list