771b5cd9a3d41b80b4be974c13d6718e2cbeed6de3f20b3c4828d76ddd3d22667f2bc119dae184b60fb0b4d9bf5377d1b0
EAP-Message =
0xc01469c020e470c2d300264d2eaed55c7d81257cc14baeba7df5f6b1b255603a91e6bdfa9c7ecccee3c2e370084d807db1e8bdb0113de9ad8a744601813b8c9a9819007d6ce46ace182c9b410274b8b6facd3b085ca4b8e07
On 03/24/2010 11:13 AM, sphaero wrote:
Matt Harlum wrote:
Hi,
John covered pretty much everything I was going to say
I'd recommend choosing a machine to generate your keys and certs on and
sticking with that, otherwise you'll end up with SSL Certs with clashing
serial numbers
Plus it'll all
s probably something with the
nas.
But if someone can confirm this procedure so it's safe.
Rg,
Arnaud
--
View this message in context:
http://old.nabble.com/Multiple-radius-servers-with-the-same-CA-tp28013061p28016006.html
Sent from the FreeRadius - User mailing list archive at Nabble.com.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
us server (radius2) using the same CA are
generated as follow:
# Certificate request (.csr) en key (.key)
openssl req -new -out radius2.csr -keyout lx0008.key -config ./server.cnf
# Certificate (.crt)
openssl ca -batch -keyfile ca.key -cert ca.pem -in radius2.csr -key
$PASSWORD_CA -out ra
Hi,
John covered pretty much everything I was going to say
I'd recommend choosing a machine to generate your keys and certs on and
sticking with that, otherwise you'll end up with SSL Certs with clashing serial
numbers
Plus it'll allow you to revoke certificates later if need be
Regards,
Mat
On 03/24/2010 06:21 AM, sphaero wrote:
Hi All,
I've been searching the archives for a while on some guidance into setting
up multiple radius servers using the same CA for use with EAP/TTLS.
I've generated a CA which is distributed to all the clients (i.e. SecureW2).
I've got 2 radius servers f
actions:
66 make server.pem
67 nano ../eap.conf
68 fg
69 freeradius -X &
70 make dh
71 freeradius -X &
I remember I started freeradius while I hadn't generated the dh file.
I'm going to check the exact actions of the Makefile.
Rg,
Arnaud
--
View t
ds with
> the client stopping communication since it can't validate the certificate.
> I'm really getting lost in the SSL jungle? I would really like to understand
> how this is done right, since it is about security.
>
> Rg,
>
> Arnaud
> --
> View this messa
I'm really getting lost in the SSL jungle? I would really like to understand
how this is done right, since it is about security.
Rg,
Arnaud
--
View this message in context:
http://old.nabble.com/Multiple-radius-servers-with-the-same-CA-tp28013061p28013061.html
Sent from the FreeRadius
9 matches
Mail list logo
