]> git.ipfire.org Git - thirdparty/freeradius-server.git/commitdiff
projects / thirdparty / freeradius-server.git / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | patch | inline | side by side (parent: 2dbb9ed)
Client certs are signed by the CA, not by the server
authorAlan T. DeKok <aland@freeradius.org>
Thu, 23 Feb 2012 12:04:31 +0000 (13:04 +0100)
committerAlan T. DeKok <aland@freeradius.org>
Thu, 23 Feb 2012 12:07:04 +0000 (13:07 +0100)
raddb/certs/Makefile patch | blob | blame | history
raddb/certs/client.cnf patch | blob | blame | history

diff --git a/raddb/certs/Makefile b/raddb/certs/Makefile
index a7b71fe5dea6d06c5c0775b764e5005464cf269b..b7d5c707e9ba546bcc150f680880ef98c2215784 100644 (file)
--- a/raddb/certs/Makefile
+++ b/raddb/certs/Makefile
@@ -98,8 +98,8 @@ client.pem: client.p12
        openssl pkcs12 -in client.p12 -out client.pem -passin pass:$(PASSWORD_CLIENT) -passout pass:$(PASSWORD_CLIENT)
        cp client.pem $(USER_NAME).pem
 
-.PHONY: server.vrfy
-client.vrfy: server.pem client.pem 
+.PHONY: client.vrfy
+client.vrfy: ca.pem client.pem 
        c_rehash .
        openssl verify -CApath . client.pem
 
diff --git a/raddb/certs/client.cnf b/raddb/certs/client.cnf
index 89fdb268e77de069d755c4165943e7cf3ae1f568..268fe6182000a06dff56b56a568410248ac6b853 100644 (file)
--- a/raddb/certs/client.cnf
+++ b/raddb/certs/client.cnf
@@ -7,10 +7,10 @@ certs                 = $dir
 crl_dir                        = $dir/crl
 database               = $dir/index.txt
 new_certs_dir          = $dir
-certificate            = $dir/server.pem
+certificate            = $dir/ca.pem
 serial                 = $dir/serial
 crl                    = $dir/crl.pem
-private_key            = $dir/server.key
+private_key            = $dir/ca.key
 RANDFILE               = $dir/.rand
 name_opt               = ca_default
 cert_opt               = ca_default
Mirror of https://github.com/FreeRADIUS/freeradius-server.git