Noted new, sane, method to create certificates

diff --git a/raddb/eap.conf b/raddb/eap.conf
index 72193ed..cdc5f94 100644 (file)
--- a/raddb/eap.conf
+++ b/raddb/eap.conf
@@ -109,9 +109,12 @@
 
                ## EAP-TLS
                #
-               #  To generate ctest certificates, run the script
+               #  To generate test certificates, do:
                #
-               #       ../scripts/certs.sh
+               #       $ cd ./certs
+               #       $ make
+               #
+               #  See also the "README" file in that directory.
                #
                #  The documents on http://www.freeradius.org/doc
                #  are old, but may be helpful.
@@ -122,16 +125,16 @@
                #
                #tls {
                #       private_key_password = whatever
-               #       private_key_file = ${raddbdir}/certs/cert-srv.pem
+               #       private_key_file = ${raddbdir}/certs/server.pem
 
                        #  If Private key & Certificate are located in
                        #  the same file, then private_key_file &
                        #  certificate_file must contain the same file
                        #  name.
-               #       certificate_file = ${raddbdir}/certs/cert-srv.pem
+               #       certificate_file = ${raddbdir}/certs/server.pem
 
                        #  Trusted Root CA list
-               #       CA_file = ${raddbdir}/certs/demoCA/cacert.pem
+               #       CA_file = ${raddbdir}/certs/ca.pem
 
                        #
                        #  For DH cipher suites to work, you have to