[strongSwan] does EAP-TLS work with self signed certificates

Noel Kuntze noel at familie-kuntze.de
Thu Oct 20 21:44:11 CEST 2016

On 19.10.2016 23:13, Ravi Kanth Vanapalli wrote:
>    Server has issued a self signed certificated for the UE. UE is supposed  to share this cert via EAP-TLS authentication when server requests a certificate
>    Server has shared the private key to the UE via secure means. This signature is used for  for signature verification in EAP-TLS
Don't share the private key. The design of TLS does not require that. And what signature? The signature of the self signed certificate?

>   Does this kind of setup work for EAP-TLS authentication in strongswan ?  I mean, when UE is trying to find a private key using the API find_private_key() in file tls_peer.c, it returns null. 


Mit freundlichen Grüßen/Kind Regards,
Noel Kuntze

GPG Key ID: 0x63EC6658
Fingerprint: 23CA BB60 2146 05E7 7278 6592 3839 298F 63EC 6658

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 833 bytes
Desc: OpenPGP digital signature
URL: <http://lists.strongswan.org/pipermail/users/attachments/20161020/245b9cd1/attachment.sig>

More information about the Users mailing list