Hi, > I intend that the resulting certs be used by more than FreeRADIUS > alone. I've never found it necessary to protect certs with > passwords, before. then strip the password off the pem file as you do with apache alan