Server certificate confusion

Stefan Winter stefan.winter at restena.lu
Wed Apr 18 13:23:43 CEST 2018


Hi,

> I've reverted the set up to use the standard Freeradius certs and I've
> been through the certs README, deleting all certificates  and recreating
> the ca.pem and server certs (btw I think the order in the README is
> wrong as you need to create the server.csr before the server.pem) and
> I've hit the same "(6) eap_tls:   ERROR: SSL says error 26 : unsupported
> certificate purpose" issue when running eapol_test with the new certs.

Can you paste both the CA's and the server's PEM representation into a
mail on the list?

Stefan

-- 
Stefan WINTER
Ingenieur de Recherche
Fondation RESTENA - Réseau Téléinformatique de l'Education Nationale et
de la Recherche
2, avenue de l'Université
L-4365 Esch-sur-Alzette

Tel: +352 424409 1
Fax: +352 422473

PGP key updated to 4096 Bit RSA - I will encrypt all mails if the
recipient's key is known to me

http://pgp.mit.edu:11371/pks/lookup?op=get&search=0xC0DE6A358A39DC66
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 819 bytes
Desc: OpenPGP digital signature
URL: <http://lists.freeradius.org/pipermail/freeradius-users/attachments/20180418/bc555be2/attachment.sig>


More information about the Freeradius-Users mailing list