[strongSwan] does EAP-TLS work with self signed certificates
Noel Kuntze
noel at familie-kuntze.de
Thu Oct 20 21:44:11 CEST 2016
On 19.10.2016 23:13, Ravi Kanth Vanapalli wrote:
> Server has issued a self signed certificated for the UE. UE is supposed to share this cert via EAP-TLS authentication when server requests a certificate
> Server has shared the private key to the UE via secure means. This signature is used for for signature verification in EAP-TLS
Don't share the private key. The design of TLS does not require that. And what signature? The signature of the self signed certificate?
>
> Does this kind of setup work for EAP-TLS authentication in strongswan ? I mean, when UE is trying to find a private key using the API find_private_key() in file tls_peer.c, it returns null.
--
Mit freundlichen Grüßen/Kind Regards,
Noel Kuntze
GPG Key ID: 0x63EC6658
Fingerprint: 23CA BB60 2146 05E7 7278 6592 3839 298F 63EC 6658
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 833 bytes
Desc: OpenPGP digital signature
URL: <http://lists.strongswan.org/pipermail/users/attachments/20161020/245b9cd1/attachment.sig>
More information about the Users
mailing list