is CRL " certificate revocation list" checked by hostapd or openssl in eap-tls?
thomas schorpp
t.schorpp
Thu May 19 00:50:30 PDT 2005
# CA certificate (PEM or DER file) for EAP-TLS/PEAP/TTLS
ca_cert=/etc/hostapd/wpaca/ca/CAcert.pem
# Server certificate (PEM or DER file) for EAP-TLS/PEAP/TTLS
server_cert=/etc/hostapd/wpaca/certs/tom3-cert.pem
no entry for the crl.
i would like to implement this then, to deauthenticate users just simply
by revoking their certs ;)
y
tom
ps. config files for the previous thread posting auth issues:
eap_user database:
#* TLS
"tom2" TLS
client wpasupplicant conf:
-eapol2
-fast reauth0
-ccmp
-ccmp
-identity
-rsn
-open
-certs
-ssid
-wpa-eap
-tls
hostapd.conf:
ieee8021x=1
eapol_key_index_workaround=0
wpa=2
...
More information about the Hostap
mailing list