This problem is due to CA.root CA.svr CA.clt script
that use password "whatever" that can be confused
with the other password (secrets) that you input
during Cert. creation.
So on configuration of tour tls module put
"whatever" as password, and see the result.
AMY
----- Original Message -----
Sent: Thursday, September 04, 2003 11:33
AM
Subject: EAP TLS LOAD PROBLEM...
I Have installed 3-9-2003 snapshot of
freeradius with openssl 0.9.7b, i have configured all
Module: Loaded eap eap: default_eap_type
= "tls" eap: timer_expire = 60 eap: ignore_unknown_eap_types
= no rlm_eap: Loaded and initialized type md5 rlm_eap: Loaded and
initialized type leap tls: rsa_key_exchange = no tls:
dh_key_exchange = yes tls: rsa_key_length = 1024 tls:
dh_key_length = 1024 tls: verify_depth = 0 tls: CA_path =
"(null)" tls: pem_file_type = yes tls: private_key_file =
"/etc/1x/radius.pem" tls: certificate_file =
"/etc/1x/radius.pem" tls: CA_file = "/etc/1x/root.pem" tls:
private_key_password = "radius" tls: dh_file =
"/usr/local/openssl/ssl/misc/DH" tls: random_file =
"/usr/local/openssl/ssl/misc/random" tls: fragment_size =
1024 tls: include_length = yes 20473:error:0906D06C:PEM
routines:PEM_read_bio:no start line:pem_lib.c:632:Expecting:
CERTIFICATE 20473:error:06065064:digital envelope
routines:EVP_DecryptFinal:bad
decrypt:evp_enc.c:438: 20473:error:0906A065:PEM routines:PEM_do_header:bad
decrypt:pem_lib.c:421: 20473:error:140B0009:SSL
routines:SSL_CTX_use_PrivateKey_file:PEM lib:ssl_rsa.c:707: rlm_eap_tls:
Error reading private key file rlm_eap: Failed to initialize type
tls radiusd.conf[136]: eap: Module instantiation failed.
All what kind of error is it?
thanks.
AMY
|