[RADIATOR] Differences in specifying EAP certificates in configuration

Johnson, Neil M neil-johnson at uiowa.edu
Mon Jun 9 13:55:55 CDT 2014


	
Should I be doing this:

		EAPTLS_CAFile %D/certificates/prod2017/net-auth-1_its_uiowa_edu.cer
		EAPTLS_CertificateFile %D/certificates/prod2017/net-auth-1_its_uiowa_edu_cert.cer
		EAPTLS_CertificateType PEM
		EAPTLS_PrivateKeyFile %D/certificates/prod2017/privateKey.key
		EAPTLS_PrivateKeyPassword <Secret>

Or should I be doing this:

		EAPTLS_CertificateChainFile %D/certificates/prod2017/net-auth-1_its_uiowa_edu.cer
		EAPTLS_CertificateType PEM
		EAPTLS_PrivateKeyFile %D/certificates/prod2017/privateKey.key
		EAPTLS_PrivateKeyPassword <Secret>

Where:
File: net-auth-1_its_uiowa_edu_cert just contains the Server Certificate
and
File: net-auth-1_its_uiowa_edu.cer contains a chain of certificates starting with the server certificate, followed by an intermediate certificate, and then finally the CA certificate.

Thanks.
-Neil

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 842 bytes
Desc: Message signed with OpenPGP using GPGMail
Url : http://www.open.com.au/pipermail/radiator/attachments/20140609/2d3df25e/attachment-0001.bin 


More information about the radiator mailing list