Michael Torrie wrote: > Yet I still have the problem where after the Access-Challenge is sent, > the Vista clients just silently drop things and the connection fails. > This is the behavior that I know I would get if I don't have the > required OID in the certificate. Yet it is there! I ran 'openssl x509 > -in /path/to/cert.crt -noout -text' and it shows the extended usage as > I'd expect. For some reason openssl calls it TLS Web Server > Authentication.
That's the right one. > Any ideas? Debug output is: Pretty standard. > Any ideas on how to better debug and fix this major problem for me? Ask Vista why it's not authenticating... there isn't much else you can do on the RADIUS server to debug the problem. Alan DeKok. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
