[EMAIL PROTECTED] wrote: > Except that my server cert does contain a CA cert. I'm not 100% sure > it's sufficient, because it was issued from an intermediate CA (it needs > to be the signer(s) not the issuer, right?), so I went to another CA got > a webserver cert in pem format directly from the root. Downloaded the > root CA cert in pem format and appended them.... same error:
You generally want to use self-signed certs for 802.1x. See raddb/certs/README > Do we know this mode is working (No CA_File, but certificate file with > server cert + ca cert)? In any case, I'd be willing to experiment more. It should work in 2.0.2. Alan DeKok. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html