Certificate chain untrusted
Alan DeKok
aland at deployingradius.com
Mon Jul 31 14:34:01 UTC 2023
On Jul 31, 2023, at 2:30 AM, Maciej Kowalka <maciejkowalkati at gmail.com> wrote:
>
> Hi, I've got configures freeradius 3.2 with eap tls, and working
> certificates, users can be authorized to network but I get warnings every
> time :
If it works...
> Certificate chain - 1 cert(s) untrusted
>
> (TLS) untrusted certificate with depth [1] subject name
> /C=PL/ST=MyState/O=MyOrg/CN=Intermediate CA
>
> (TLS) untrusted certificate with depth [0] subject name
> /C=PL/ST=MyState/O=MyOrg/CN=client
>
> Is there solution to this or so I have to ignore it, and live with it?
Configure the server so that it knows about the certificates. That way they will be trusted.
See mods-available/eap. Look for "reject_unknown_intermediate_ca"
Alan DeKok.
More information about the Freeradius-Users
mailing list