How to avoid EAP-TLS login on commercial CA's?

Timo Buhrmester timo.buhrmester at
Thu Jun 29 17:08:57 CEST 2017

> We do not want any "client certificate" signed by this commercial big CA to
> log in.
What about your own/legitimate clients?  Won't they be provided with
a client cert signed by that CA?

More information about the Freeradius-Users mailing list