Artur Hecker <[EMAIL PROTECTED]> wrote: > well, theortically, it needs a signing capacity (represented by an > included extension) to do this. anyway, in my config the client > certificates are _not_ signed by this one, they are - of course - signed > by the private key of the CA... as ANY certificate ever issued.
Ok... > > If you don't list usernames and passwords in a database, then the > > server has no way of authenticating users... unless you use > > certificates. > > now i don't get it. what does the password has to do with that? we speak > about certificates, why would i configure a password? I'm saying that WITHOUT certificates, you need to have a database. Alan DeKok. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html