>Has anyone on this list purchased an SSL certificate from a Certificate
>Authority (like Thawte or Verisign) for doing PEAP or EAP-TTLS?
>The scripts that come with Freeradius for generating a self-signed
>certificate include a special ExtendedKeyUsage attribute.
What I have done is generated a csr with openssl and signed it with my m$ ca. Imported that back into openssl with the ca cert from my ca. Works great (especially with your info about proxying the mschap conversation (THANKS!!))! I am sure if you had a ms ca that was subordinate to Thawte or verisign and did the same thing it would work too.
Steve
- SSL Certificates for PEAP/TTLS Bob McCormick
- Re: SSL Certificates for PEAP/TTLS Michael Griego
- Re: SSL Certificates for PEAP/TTLS Bob McCormick
- Re: SSL Certificates for PEAP/TTLS Steve OBrien
- Re: SSL Certificates for PEAP/TTLS Bob McCormick
- Re: SSL Certificates for PEAP/TTLS Michael Griego
- Steve OBrien
