Certificate chain untrusted
Maciej Kowalka
maciejkowalkati at gmail.com
Wed Aug 2 07:18:04 UTC 2023
wt., 1 sie 2023 o 16:52 Alan DeKok <aland at deployingradius.com> napisał(a):
>
>
> On Aug 1, 2023, at 12:46 AM, Maciej Kowalka <maciejkowalkati at gmail.com> wrote:
> > I tried but probably didn't do it right, can you point to how exactly to do it?
>
> Follow the documentation on how to:
Can you point me where it is mentioned in documentation as I can’t
seem to find it.
> a) put certificates into the folder (and rehash as necessary)
So I have both intermediate-ca.pem and ca.pem in the folder, do I need
to c_rehash it?(in eap file rehash is mentioned only for CA and CRL)
> b) put the certificates into one file in order
Do you mean like “cat intermediate-ca.pem ca.pem > int-ca_ca.pem”?
> What may be happening is that you don't have the intermediate certificate. i.e. only the end-user device has them. So perhaps double-check that.
I do have the intermediate-ca.pem in the same folder as ca.pem, but
don't know if I need to add something in the eap config file to let
freeradius know it.
Appreciate your help ,
Maciej
More information about the Freeradius-Users
mailing list