"Antti Mattila" <[EMAIL PROTECTED]> wrote: > When using the scripts that are on EAP/TLS guides the script makes the > certificate valid from 6 hours later. Where can I change this? I know > how to change the days that certificate is valid in openssl.conf and in > the script but no valid as of now.
There is no "start time" for certificates, except when it was created. I would suggest verifying that both machines have the same time. It looks like they are 6 hours off from each other. > Is there any other ready certificate package than cert.tgz from Adam > Sulmicki. It has expired during the spring. It is the only one that I > have manage not to get unknown CA error with Freeradius. But it doesn't > work otherwise because it is expired. See 'scripts/CA.all' in the CVS snapshot from tomorrow. I've used it to generate my own test certificates. Just type ~4-5 random characters at every prompt (except for the passwords!), and you will end up with a certificate structure just like the one in the doc. Alan DeKok. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
