FreeRADIUS Wiki	Main Page | About | Help | FAQ | Special pages | Log in
	Printable version | Disclaimers | Privacy policy

Certificates

From FreeRADIUS Wiki

Certificates

Configuration

In Version 2.0 and later, the certificates are stored in the directory raddb/certs. The relevant files in that directory are

README

Simple HOWTO on certificate creation and EAP performance

Makefile

File containing rules to build certificates from the input configuration files.

ca.cnf

Configuration for sample certificate authority.

server.cnf

Configuration for sample server certificate.

ca.cnf

Configuration for sample client certificate. (Only needed for EAP-TLS.)

xpextensions

File hold magic OID's needed by Microsoft EAP clients.

Generation

Certificates may be created via a simple process:

cd raddb/certs
make

Then, start the server:

radiusd -X

You should edit the certificate configuration files (see above) to meet your needs. Then, do

cd raddb/certs
make

And the new certificates will be generated. There is no need to run any special OpenSSL commands.

If you have generated certificates via some other process, simply put them in the raddb/certs directory, and edit the raddb/eap.conf file to point to your local certificates.

Edit this page | Discuss this page | Page history | What links here | Related changes Main Page | About FreeRADIUS Wiki | Find: This page has been accessed 2,430 times. This page was last modified 18:03, 12 April 2008.