Hi list,
I'm trying to set up the eap-tls authentication method for
a wireless lan, following some howto I found in the Net
(http://www.impossiblereflex.com/8021x/eap-tls-HOWTO.htm
and http://www.dslreports.com/forum/remark,9286052).
I've successfully compiled and launched (not without
experiencing some frustration...) freeradius-0.9.3 with
openssl-0.9.7d, so the server seems ok.
My problem is that my client Windows XP SP1 doesn't
understand the certificates root.der and cert-clt.p12,
that I generated using the CA.all script. When I
double-click on them it says that they are not valid (the
messages are in French for my settings, so I try to
translate them: "This file isn't valid as a security
certificate" for root.der and "This file isn't valid for
the exchange of personal informations" for cert-clt.p12).
I've tried to modify the root.pem (not root.der !) file,
leaving only
-----BEGIN CERTIFICATE-----
<encypted content>
-----END CERTIFICATE-----
-----BEGIN RSA PRIVATE KEY-----
<encypted content>
-----END RSA PRIVATE KEY-----
, renamed it to root.cer and XP let me install it without
problems (as shown in the guides). However this method
doesn't work for the client certificate (XP says that it
has not enough information to verify its validity).
Has anybody experienced this kind of problems?
Thank you sincerely for your help,
Giuliano
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
- Re: EAP-TLS / Windows XP SP1 Ippoliti Giuliano
- Re: EAP-TLS / Windows XP SP1 Ippoliti Giuliano
