3.11.4. TLS_CertificateFile Previous topic Parent topic Child topic Next topic

When TLS is enabled, this parameter specifies the name of the file containing the certificate that Radiator uses. This certificate is sent to the TLS peer and validated by the peer during TLS setup. The certificate file must be in PEM or ASN1 format, depending on the setting of the TLS_CertificateType parameter. The certificate file can also contain the certificate's private key if the TLS_PrivateKeyFile parameter specifies the same file.
RadSec clients expect the server certificate to have a common name (CN) the same as the RadSec servers DNS host name or address.