[RADIATOR] Differences in specifying EAP certificates in configuration
Johnson, Neil M
neil-johnson at uiowa.edu
Mon Jun 9 13:55:55 CDT 2014
Should I be doing this:
EAPTLS_CAFile %D/certificates/prod2017/net-auth-1_its_uiowa_edu.cer
EAPTLS_CertificateFile %D/certificates/prod2017/net-auth-1_its_uiowa_edu_cert.cer
EAPTLS_CertificateType PEM
EAPTLS_PrivateKeyFile %D/certificates/prod2017/privateKey.key
EAPTLS_PrivateKeyPassword <Secret>
Or should I be doing this:
EAPTLS_CertificateChainFile %D/certificates/prod2017/net-auth-1_its_uiowa_edu.cer
EAPTLS_CertificateType PEM
EAPTLS_PrivateKeyFile %D/certificates/prod2017/privateKey.key
EAPTLS_PrivateKeyPassword <Secret>
Where:
File: net-auth-1_its_uiowa_edu_cert just contains the Server Certificate
and
File: net-auth-1_its_uiowa_edu.cer contains a chain of certificates starting with the server certificate, followed by an intermediate certificate, and then finally the CA certificate.
Thanks.
-Neil
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 842 bytes
Desc: Message signed with OpenPGP using GPGMail
Url : http://www.open.com.au/pipermail/radiator/attachments/20140609/2d3df25e/attachment-0001.bin
More information about the radiator
mailing list