> I'd also suggest upgrading to the latest CVS version. It has more > debugging messages, and some bug fixes.
I will do this tonight and rerun my tests tommorrow.. Anyone else have any ideas where it might be failing? Testing is difficult to do often since the only things we have around here that speak radius are my production systems. So I have to get a lot of testing done in a very short period of time while I take out the production dial in/vpn capability for a few minutes here and there throughout the day. > In the ldap configuration section, add: > > start_tls = yes Are you aware if freeradius supports "subjectAltNam" in the ssl certificate? My ldap servers are called ldaptest1 and ldaptest2. They have ssl certs generated for the dns round robin between them refering to "ldaptest". I would like to be able tp reference one server or the other by hitting that hostname directly via ssl. The cert on each has a subjectAltNam field that references ldaptest1 or ldaptest2 respectivily.. It works well for openldap and MS outlook.. Will it work for freeradius? Again, Thanks for any assistance you can offer.. :) Mike - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
