[RADIATOR] EAPTLS config
Markus Moeller
huaraz at moeller.plus.com
Tue Nov 24 01:00:58 CST 2009
----- Original Message -----
From: "Alan Buxey" <A.L.M.Buxey at lboro.ac.uk>
To: "Markus Moeller" <huaraz at moeller.plus.com>
Sent: Friday, November 20, 2009 9:29 PM
Subject: Re: [RADIATOR] EAPTLS config
> Hi,
>> Hi,
>>
>> I have the below config and noticed that I have to concatenate all CA
>> certs into one pem file as EAPTLS_CAPath %D/certs/CA does not work. Is
>> that a bug or did I misunderstood how it should work. I copied 5 single
>> CA pem files into %D/certs/CA.
>>
>> Thank you
>> Markus
>>
>>
>> <AuthBy FILE>
>> Identifier EapTLS
>> Filename %D/Dummy
>>
>> EAPType TLS
>>
>> EAPTLS_CAFile %D/certs/CA/ALL-ca-certs.pem
>> # fails EAPTLS_CAPath %D/certs/CA
>
> this is fixed in 4.0 and higher...however, i think it can be fixed
> by doing something 'wierd'
>
> EAPTLS_CAFile
> EAPTLS_CAPath %D/certs/CA
>
I tried this, but it did not work for me.
>
> ie define EAPTLS_CAFile but leave it blank!
>
> alan
>
Markus
More information about the radiator
mailing list