is CRL " certificate revocation list" checked by hostapd or openssl in eap-tls?

thomas schorpp t.schorpp at gmx.de
Thu May 19 03:50:30 EDT 2005


# CA certificate (PEM or DER file) for EAP-TLS/PEAP/TTLS
ca_cert=/etc/hostapd/wpaca/ca/CAcert.pem

# Server certificate (PEM or DER file) for EAP-TLS/PEAP/TTLS
server_cert=/etc/hostapd/wpaca/certs/tom3-cert.pem

no entry for the crl.

i would like to implement this then, to deauthenticate users just simply
by revoking their certs ;)

y
tom

ps. config files for the previous thread posting auth issues:

eap_user database:

#*			TLS

"tom2"                    TLS

client wpasupplicant conf:

-eapol2
-fast reauth0
-ccmp
-ccmp
-identity
-rsn
-open
-certs
-ssid
-wpa-eap
-tls

hostapd.conf:

ieee8021x=1
eapol_key_index_workaround=0
wpa=2
...







More information about the HostAP mailing list