I have noticed that when I use the <span>subject_match</span> field in my config with two servers like this...<br><br>network={<br>        ssid=&quot;myssid&quot;<br>        proto=WPA2<br>        key_mgmt=WPA-EAP<br>
        pairwise=CCMP<br>
        group=CCMP<br>        eap=PEAP<br>        identity=&quot;myusername&quot;<br>        password=&quot;mypass&quot;<br>        ca_cert=&quot;/usr/share/ca-certificates/mozilla/Entrust.net_Secure_Server_CA.crt&quot;<br>
<div>

        <span>subject_match</span>=&quot;/C=US/ST=SOMESTATE/L=Some City/O=Some Organization/OU=IT/CN=<a href="http://server1.domain.com/" target="_blank">server1.domain.com</a>&quot;<br>        <span>subject_match</span>=&quot;/C=US/ST=SOMESTATE/L=Some City/O=Some Organization/OU=IT/CN=<a href="http://server2.domain.com/" target="_blank">server2.domain.com</a>&quot;<br>


        phase2=&quot;auth=MSCHAPV2&quot;<br>        priority=1<br>}<br><br>If the AP that I am connected to starts authenticating against <a href="http://server2.domain.com/" target="_blank">server2.domain.com</a>, then I fail authentication because of a cert/hostname mismatch.  Is there a way to specify multiple &quot;<span>subject_match</span>&quot; fields instead of just one?  <br>
<br>Thanks,<br><br>Curtis<br><br></div>