The mailing list for users of the eduroam Configuration Assistant Tool (CAT)

[Stefan Winter <stefan.winter AT restena.lu>]

Hi,

the link you posted is for authenticated admins of the IdP in question
in the admin area, so all *I* get when going there is:

Input validation error: This IdP identifier is not accessible!

Could you send me the realm name and the CA cert you have configured in
CAT via off-list mail?

I'll take a look.

Stefan

Am 17.03.2017 um 12:54 schrieb Zenon Mousmoulas:
> Hi,
> 
> we've noticed an issue in a realm reachability test, where
> cat.eduroam.org reports:
> 
> The server certificate could not be verified to the root CA you
> configured in your profile!
> 
> We can't reproduce it with openssl:
> 
> openssl verify -CAfile <root_ca_uploaded_to_CAT.pem> <server.pem>
> server.pem: OK
> 
> This is the profile:
> 
> https://cat.eduroam.org/admin/action_realmcheck.php?inst_id=1958&profile_id=3356
> 
> 
> Any ideas? Could this be related to the missing x509v3 SAN?
> 
> Thanks for any insight,
> Z.
> 
> To unsubscribe, send this message:
> mailto:sympa AT lists.geant.org?subject=unsubscribe%20cat-users
> Or use the following link:
> https://lists.geant.org/sympa/sigrequest/cat-users


-- 
Stefan WINTER
Ingenieur de Recherche
Fondation RESTENA - Réseau Téléinformatique de l'Education Nationale et
de la Recherche
2, avenue de l'Université
L-4365 Esch-sur-Alzette

Tel: +352 424409 1
Fax: +352 422473

PGP key updated to 4096 Bit RSA - I will encrypt all mails if the
recipient's key is known to me

http://pgp.mit.edu:11371/pks/lookup?op=get&search=0xC0DE6A358A39DC66

Attachment: 0x8A39DC66.asc
Description: application/pgp-keys

Attachment: signature.asc
Description: OpenPGP digital signature