wpa supplicant interoperability with IAS server for EAP-TLS

J I jmi_1996 at yahoo.com
Mon Apr 11 10:48:38 EDT 2005


Thanks Jouni for such a quick reply.
 
For EAP-TLS, I think two certicates are required; one for Server validation and the other one for Client validation. Could you please tell me the steps to generates certificates (both for Server & Client) using the Certificate Service on IAS server?
 
Thanks & Best Regards,
JMI

Jouni Malinen <jkmaline at cc.hut.fi> wrote:
On Mon, Apr 11, 2005 at 07:08:18AM -0700, J I wrote:

> Is wpa supplicant interoperable with IAS Server for EAP-TLS?

Yes,

> If yes, 
> then how is the client certificate loaded in the IAS Server?

It is not; TLS uses CA certificate to verify certificates and client
certificates are not loaded in the authentication server. To be more
exact, the certificate is sent during the EAP-TLS handshake, but that
happens automatically as part of the TLS handshake.

-- 
Jouni Malinen PGP id EFC895FA
_______________________________________________
HostAP mailing list
HostAP at shmoo.com
http://lists.shmoo.com/mailman/listinfo/hostap

__________________________________________________
Do You Yahoo!?
Tired of spam?  Yahoo! Mail has the best spam protection around 
http://mail.yahoo.com 
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.shmoo.com/pipermail/hostap/attachments/20050411/bf5f6da1/attachment.htm 


More information about the HostAP mailing list