The mailing list for users of the eduroam Configuration Assistant Tool (CAT)

[A.L.M.Buxey AT lboro.ac.uk]

Hi,

>    "Found Error Schannel 36882 
>    The certificate received from the remote server was issued by an 
> untrusted
>    certificate authority. Because of this, none of the data contained in the
>    certificate can be validated. The SSL connection request has failed. The
>    attached data contains the server certificate."

sounds like your eduroamCAT profile doesnt have the correct CA (or complete 
intermediate chain) that matches
what your RADIUS server is handing out.  has there been a change of certs at 
the RADIUS end?

>    I see there is a way to verify the radius setup that will also test our
>    cert chain, but we don't have our admin's login to the portal.
>    Assuming that this verifies what we suspect, the next issue is we do not
>    have access to the Radius server to  fix the certificate chain issue.

well, without admin access to either then nothing can be fixed...unless you 
are asking for 
the main eduroamCAT adminstration team to play around with your profile (I'm 
not sure they would
be up for that - its quite easy to grab the CA/intermediates via a request to 
your realm but
theres no guarantee that the RADIUS server is right (the eduroamCAT might 
have the correct profile
but theres been a mistake on your RADIUS server config)

I see your RADIUS cert as

/C=CA/ST=BC/O=UFV/CN=idp.ufv.ca/emailAddress=info AT ufv.ca

....and thats interesting as your CA (and intermediates if any) doesnt appear 
to be handed out
by the RADIUS server...thats

"C=CA, ST=BC, L=Abbotsford, 
O=UFV/emailAddress=info AT ufv.ca,
 CN=UFV SelfSigned CA Authority"

alan