Problem using ca_path to connect to a EAP-TLS network
Jouni Malinen
j at w1.fi
Tue Dec 9 11:56:29 EST 2008
On Tue, Dec 09, 2008 at 04:18:10PM +0800, Soh Kam Yung wrote:
> I'm encountering problems connecting to a EAP-TLS network using
> ca_path in my configuration (instead of ca_cert).
> ca_path = "/usr/local/certs"
>
> I start seeing the following error in the wpa_supplicant debug output:
>
> TLS: Certificate verification failed, error 20 (unable to get local
> issuer certificate) depth 1 for '[deleted]'
>
> Am I using ca_path correctly?
Does the directory that you point to include certificate hash files
(symlink from a filename with the hash to the actual certificate)?
OpenSSL requires that to find the certificates when using ca_path.
--
Jouni Malinen PGP id EFC895FA
More information about the HostAP
mailing list