wpa supplicant interoperability with IAS server for EAP-TLS

J I jmi_1996
Mon Apr 11 07:48:38 PDT 2005

Thanks Jouni for such a quick reply.
For EAP-TLS, I think two certicates are required; one for Server validation and the other one for Client validation. Could you please tell me the steps to generates certificates (both for Server & Client) using the Certificate Service on IAS server?
Thanks & Best Regards,

Jouni Malinen <jkmaline at cc.hut.fi> wrote:
On Mon, Apr 11, 2005 at 07:08:18AM -0700, J I wrote:

> Is wpa supplicant interoperable with IAS Server for EAP-TLS?


> If yes, 
> then how is the client certificate loaded in the IAS Server?

It is not; TLS uses CA certificate to verify certificates and client
certificates are not loaded in the authentication server. To be more
exact, the certificate is sent during the EAP-TLS handshake, but that
happens automatically as part of the TLS handshake.

Jouni Malinen PGP id EFC895FA
HostAP mailing list
HostAP at shmoo.com

Do You Yahoo!?
Tired of spam?  Yahoo! Mail has the best spam protection around 
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.shmoo.com/pipermail/hostap/attachments/20050411/bf5f6da1/attachment.htm 

More information about the Hostap mailing list