problem with CA certificate using mschapv2

Matthew Newton mcn4 at
Wed Jan 21 13:11:40 CET 2015

On Wed, Jan 21, 2015 at 12:38:31PM +0100, marcos wrote:
> Yes, I was installing. The problem is that I don't know how to prepare
> the CA certificate for the server part. Im using TERENA:
> > If the intermediate certs are not installed on the client, are you
> > sending them (in the right order) from the server?
> Justly is the point where I don't know how to do. Only I discovered how
> to add the CA, but no the Intermediate certificates. I need to prepare a
> certificate joining all or I can mark different?


  Root CA cert installed on the client device.

.pem certificate file on FreeRADIUS containing (in this order):

  RADIUS server certificate
  Intermediate certifiate

The root CA should not be necessary here to send to the client, as
it already has it and can check the chain it was sent from the


Matthew Newton, Ph.D. <mcn4 at>

Systems Specialist, Infrastructure Services,
I.T. Services, University of Leicester, Leicester LE1 7RH, United Kingdom

For IT help contact helpdesk extn. 2253, <ithelp at>

More information about the Freeradius-Users mailing list