3.8.7. EAPTLS_CertificateChainFile Previous topic Parent topic Child topic Next topic

For TLS-based EAP types, such as TLS, TTLS and PEAP, this parameter specifies the name of a file containing a certificate chain for the Radius server certificate. The server certificate chain is sent to the EAP client and validated by the client during EAP authentication. The certificate chain must be in PEM format. EAPTLS_CertificateChainFile can be used instead of EAPTLS_CertificateFile for explicitly constructing the server certificate chain which is sent to the client.
Use EAPTLS_CertificateChainFile to specify a chain of certificates that the server uses to identify itself to the client. If there is only one server certificate, and not a chain, you can use EAPTLS_CertificateFile instead.
Special characters are supported.