3.10.6. EAPTLS_CertificateFile Previous topic Parent topic Child topic Next topic

For TLS-based EAP types, such as TLS, TTLS and PEAP, this parameter specifies the name of a file containing the RADIUS server certificate. The server certificate is sent to the EAP client and validated by the client during EAP authentication. The certificate file may be in PEM or ASN1 format, depending on the setting of the EAPTLS_CertificateType parameter. The certificate file can also contain the server's TLS private key if the EAPTLS_PrivateKeyFile parameter specifies the same file. If the server certificate is a chain of certificates, use EAPTLS_CertificateChainFile instead.
Special characters are supported.
Important
System certificate store is not used. The TLS configuration parameters must cover all CAs, CRLs and other settings that are needed.