|
This problem is due to CA.root CA.svr CA.clt script
that use password "whatever" that can be confused
with the other password (secrets) that you input
during Cert. creation.
So on configuration of tour tls module put
"whatever" as password, and see the result.
AMY
----- Original Message -----
Sent: Thursday, September 04, 2003 11:33
AM
Subject: EAP TLS LOAD PROBLEM...
I Have installed 3-9-2003 snapshot of
freeradius with openssl 0.9.7b, i have configured all
Module: Loaded eap
eap: default_eap_type
= "tls"
eap: timer_expire = 60
eap: ignore_unknown_eap_types
= no
rlm_eap: Loaded and initialized type md5
rlm_eap: Loaded and
initialized type leap
tls: rsa_key_exchange = no
tls:
dh_key_exchange = yes
tls: rsa_key_length = 1024
tls:
dh_key_length = 1024
tls: verify_depth = 0
tls: CA_path =
"(null)"
tls: pem_file_type = yes
tls: private_key_file =
"/etc/1x/radius.pem"
tls: certificate_file =
"/etc/1x/radius.pem"
tls: CA_file = "/etc/1x/root.pem"
tls:
private_key_password = "radius"
tls: dh_file =
"/usr/local/openssl/ssl/misc/DH"
tls: random_file =
"/usr/local/openssl/ssl/misc/random"
tls: fragment_size =
1024
tls: include_length = yes
20473:error:0906D06C:PEM
routines:PEM_read_bio:no start line:pem_lib.c:632:Expecting:
CERTIFICATE
20473:error:06065064:digital envelope
routines:EVP_DecryptFinal:bad
decrypt:evp_enc.c:438:
20473:error:0906A065:PEM routines:PEM_do_header:bad
decrypt:pem_lib.c:421:
20473:error:140B0009:SSL
routines:SSL_CTX_use_PrivateKey_file:PEM lib:ssl_rsa.c:707:
rlm_eap_tls:
Error reading private key file
rlm_eap: Failed to initialize type
tls
radiusd.conf[136]: eap: Module instantiation failed.
All what kind of error is it?
thanks.
AMY
|
