Hello,
I'm taking a look at the eduroam CAT on Windows 7 (haven't tried anything else yet) to see how it purrs. I'm having trouble with the certificate side of things, though...
Our home server has a certificate signed by TERENA and through to AddTrust*. For manual setup, we get Windows users to put "network.tokens.csx.cam.ac.uk" in the "Connect to these servers" box and tick "AddTrust External CA Root" in the "Trusted Root Certification Authorities" box.
However, when using the CAT, I can't get it to tick a box, only upload a CA. I've tried giving it our signed certificate file but that doesn't work - the setup is complete but no certificate is trusted: I have no idea what it did with the certificate I gave it (I can't find it in any of the control panels). If I go in and tick the "AddTrust" box and re-enter my credentials then it will connect, but that doesn't make things much easier for the user.
I don't think I should be supplying an existing CA (that Windows should already have).
Am I doing something wrong or missing something?
Thanks,
- Bob
* the reason for doing this, as opposed to having a local CA signing the certificate I've gone through before and isn't something that will work for us**.
** we could have a special self-signed one just for this, I suppose, but that would then differ from the one we provide for manual install.
--
Bob Franklin <[log in to unmask]> +44 1223 748479
Network Division, University of Cambridge Computing Service
|