Skip to Content.
Sympa Menu

cat-users - Re: [[cat-users]] EAP-TLS issues

cat-users AT lists.geant.org

Subject: The mailing list for users of the eduroam Configuration Assistant Tool (CAT)

List archive

Re: [[cat-users]] EAP-TLS issues


Chronological Thread 
  • From: NAKAMURA Motonori <motonori AT nii.ac.jp>
  • To: cat-users AT lists.geant.org
  • Subject: Re: [[cat-users]] EAP-TLS issues
  • Date: Thu, 25 Apr 2019 08:52:51 +0900

Dear Tomasz,

Yes, I know some universities in Japan use public certificates that cannot include IDs for eduroam in CN. I do not know how much it is demanded to be supported at this moment though. It may be a possible option to pick up email address in subjectAltName if a user want.

Best,
- motonori

On 2019/04/25 4:25, Tomasz Wolniewicz wrote:
Hi,

W dniu 24.04.2019 o 19:18, NAKAMURA Motonori pisze:

I also understand that it would be better to specify .p12 file on
installation in most situation (with a client certificate only for
eduroam). But I would be happy if there is an option to specify an
installed certificate in case a user want to chose (with a client
certificate which is also used for other purposes) to avoid duplicated
certificate installation procedures...

Would you expect that the user should be able to specify the username as
well? Normally Windows picks this up from the CN in the cert but if some
general-purpose cert is used then this might not work.

Tomasz



Archive powered by MHonArc 2.6.19.

Top of Page