3.8.29. EAPTLS_PolicyOID Previous topic Parent topic Child topic Next topic

For TLS based EAP types such as TLS, TTLS, and PEAP, when the client presents a certificate, this optional parameter enables certificate policy checking. It also specifies one or more policy OIDs that must be present in the certificate path. It sets the 'require explicit policy' flag as defined in RFC3280. Using this requires Net-SSLeay 1.37 or later.
# Require just one policy
EAPTLS_PolicyOID 2.5.29.32.0