Need CA, Client and Server certificates to test EAP-TLS/TTLS/PEAP

Chr chunkeey at web.de
Tue Jan 8 14:40:57 EST 2008


On Tuesday 08 January 2008 18:36:17 Dan Williams wrote:
> On Tue, 2008-01-08 at 18:28 +0100, Laurento Frittella wrote:
> > Il giorno mar, 08/01/2008 alle 11.15 -0500, Dan Williams ha scritto:
> > > You create them yourself using openssl.  There are quite a few
> > > tutorials out there if you search around, you might just try Googling
> > > for "wpa_supplicant freeradius".
> >
> > I read in the hostap.conf example file that hostap has a internal radius
> > server, so I think freeradius isn't strictly needed... or I hope so ;) I
> > want to experiment EAP using hostap + wpa_supplicant and I'd like to
> > minimize running software.
>
> Right, but many of the results you'll get show you how to generate
> self-signed certificates with OpenSSL that actually work.
>
> Dan
>

Well, I can recommend a good openSSL gtk-frontend (tinyca version2)...
At least, the default settings are good enough for my Hostap WPA EAP-TLS 
Setup ;) so you don't have to _fiddle_ with openssl.conf...

Chr. 


More information about the HostAP mailing list