Hi list,
Is it possible to support multiple client CA certificates?
Suppose we want to support different customer groups. Each group has
its own CA certificate. Can freeradius support that?
Thanks a lot!
Gina Zhang
-
List info/subscribe/unsubscribe? See
On 06/21/2010 12:00 PM, Zhang, Ge (Gina) wrote:
Hi list,
Is it possible to support multiple client CA certificates?
Suppose we want to support different customer groups. Each group has
its own CA certificate. Can freeradius support that?
Yes, if the CA's are in a bundle set CA_file in
John,
Thank you very much for the information! I will try it.
Regards,
Gina
-Original Message-
From: John Dennis [mailto:jden...@redhat.com]
Sent: Monday, June 21, 2010 11:20 AM
To: FreeRadius users mailing list
Cc: Zhang, Ge (Gina)
Subject: Re: Can freeradius support multiple client
-users-bounces+gina.zhang=alcatel-lucent@lists.freeradius.org]
On Behalf Of Zhang, Ge (Gina)
Sent: Monday, June 21, 2010 11:52 AM
To: John Dennis; FreeRadius users mailing list
Subject: RE: Can freeradius support multiple client CA certificates?
John,
Thank you very much for the information! I
On 06/21/2010 01:01 PM, Zhang, Ge (Gina) wrote:
John,
Is it possible to support multiple sets of server certificates so that one
group customer would use
one server CA file?
This is a basic PKI question, not really FreeRADIUS. In PKI there can
only be one certificate per server. You would
Subject: Re: Can freeradius support multiple client CA certificates?
On 06/21/2010 01:01 PM, Zhang, Ge (Gina) wrote:
John,
Is it possible to support multiple sets of server certificates so that
one group customer would use one server CA file?
This is a basic PKI question, not really FreeRADIUS
On 06/21/2010 02:38 PM, Zhang, Ge (Gina) wrote:
John,
Thanks a lot for your response. If I configure multiple virtual server, would
it be possible?
A (FreeRADIUS) virtual server does not have a different IP address nor
would it have different subject names nor subject alt names.
I'm not
John,
Thank you very much for your advise!
Regards,
Gina Zhang
-Original Message-
From: John Dennis [mailto:jden...@redhat.com]
Sent: Monday, June 21, 2010 1:54 PM
To: Zhang, Ge (Gina)
Cc: FreeRadius users mailing list
Subject: Re: Can freeradius support multiple client CA
On 21 Jun 2010, at 19:53, John Dennis wrote:
A (FreeRADIUS) virtual server does not have a different IP address nor would
it have different subject names nor subject alt names.
I'm not getting the feeling you understand how PKI works, it might be
worthwhile to read up on it.
When testing
support multiple client CA certificates?
On 21 Jun 2010, at 19:53, John Dennis wrote:
A (FreeRADIUS) virtual server does not have a different IP address nor would
it have different subject names nor subject alt names.
I'm not getting the feeling you understand how PKI works, it might
On 06/21/2010 04:03 PM, Robert Franklin wrote:
When testing a new server certificate with a different chain to a new
root CA, I set up a separate eap module with different certificates.
Ah, good point and good suggestion. I had forgotten each module instance
has it's own SSL context.
--
11 matches
Mail list logo