On 18.11.19 16:22, Cappalli, Tim (Aruba) wrote: > So again, if NAIRealm is not bound to an organization’s public domain > name, how does a public CA prove ownership of an NAIRealm? How is this > different than ESSID?
It must not be a public domain name, but it can be. Speaking of eduroam this is usually the case, and is also used for roaming. (See RFC7585, the NAPTR DNS record) And if it is, it can be validated by a CA. Janfred
signature.asc
Description: OpenPGP digital signature
_______________________________________________ Emu mailing list Emu@ietf.org https://www.ietf.org/mailman/listinfo/emu