When using the scripts that are on EAP/TLS guides the script makes the
certificate valid from 6 hours later. Where can I change this? I know
how to change the days that certificate is valid in openssl.conf and in
the script but no valid as of now.
This is really frustrating because I'm trying to g
"Antti Mattila" <[EMAIL PROTECTED]> wrote:
> When using the scripts that are on EAP/TLS guides the script makes the
> certificate valid from 6 hours later. Where can I change this? I know
> how to change the days that certificate is valid in openssl.conf and in
> the script but no valid as of now.
hi
Antti Mattila wrote:
Yes. Don't set the client to validate the server certificate. The
server does not currently send its certificate to the client.
i think it's wrong.
The TLS "howto"s also say not to verify the server certificate.
yes, but only for testing.
Thank you! Very good to know.
> Yes. Don't set the client to validate the server certificate. The
>server does not currently send its certificate to the client.
>
> The TLS "howto"s also say not to verify the server certificate.
Thank you! Very good to know. But how come in Ken Roser's Freeradius
and XP supplicant on page 5 t
I installed the 10.8 snapshot and ran the CA.all script that I found
under the scripts directory.
Result:
With the new certificates I still get "unknown CA",
"rlm_eap_tls: SSL_read Error 26550:error:140890B2:SSL
routines:SSL3_GET_CLIENT_CERTIFICATE:no certificate
returned:s3_srvr.c:1987",
"Error
