Mercurial > hg > fD-testbed
diff conf/opendiam.eap.testbed.aaa/opendiameter/diametereap/server.eap-tls.xml @ 0:9e5a3c884de6
Initial import of the virtual testbed.
author | Sebastien Decugis <sdecugis@nict.go.jp> |
---|---|
date | Thu, 17 Jun 2010 11:00:32 +0900 |
parents | |
children |
line wrap: on
line diff
--- /dev/null Thu Jan 01 00:00:00 1970 +0000 +++ b/conf/opendiam.eap.testbed.aaa/opendiameter/diametereap/server.eap-tls.xml Thu Jun 17 11:00:32 2010 +0900 @@ -0,0 +1,52 @@ +<?xml version="1.0" encoding="UTF-8"?> +<!-- Configuration file for server always starts with "configuration_server" element as root --> +<configuration_server xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" + xsi:noNamespaceSchemaLocation='eap-tls.configuration.xsd'> + <!-- Encryption section. This section has a fixed list of elements. + This information is needed for OpenSSL to work --> + <encryption> + <!-- Pass phrase for server cryptographic files --> + <pass_phrase>servidor</pass_phrase> + <!-- Key file --> + <key_file>./tests/tls_config/auth/srv-key.pem</key_file> + <!-- Certificate file --> + <cert_file>./tests/tls_config/auth/srv-cert.pem</cert_file> + <!-- File used to build ramdom numbers --> + <random>./tests/tls_config/auth/random</random> + <!-- Path for Certification Authorities --> + <ca_path>./tests/tls_config/auth</ca_path> + <!-- Certification Authority's certificate for Certification Authority that signs server certificate --> + <ca_cert>./tests/tls_config/auth/ca-cert.pem</ca_cert> + <!-- File implementation for Diffie-Hellman algorithm --> + <dh>./tests/tls_config/auth/dh</dh> + <!-- RSA Key --> + <rsa_key>0</rsa_key> + <!-- Diffie-Hellman Key --> + <dh_key>1</dh_key> + <!-- RSA key length --> + <rsa_key_length>512</rsa_key_length> + <!-- Diffie-Hellman key lenght --> + <dh_key_length>512</dh_key_length> + <!-- Maximum depth for the certificate chain verification that shall be allowed --> + <verify_depth>1</verify_depth> + <!-- Type of certificates: + 0: ASN1 + 1: PEM + --> + <file_type>1</file_type> + </encryption> + <!-- Fragmentation section. This section has a fixed list of elements. + This information is needed in packet fragmentation --> + <fragmentation> + <!-- Initial value for lenght flag in fragmentation --> + <include_length>false</include_length> + <!-- Fragment size --> + <fragment_size>500</fragment_size> + </fragmentation> + <!-- Server specific section. This section has a fixed list of elements. + This information is needed in packet fragmentation --> + <server> + <!-- Context identifier for server's OpenSSL initialization --> + <id_context>100</id_context> + </server> +</configuration_server>