I am attempting to setup a FreeRADIUS server with EAP-TLS on a 802.11 wireless link. The server responds when I attempt an 802.1X authentication with my wireless client, but the debugging output gives the following error (using freeradius 0.9.3 and openssl 0.9.7c). The certficates were generated using openssl 0.9.7c. I am using RedHat ES2.1 (forget which flavour that is). I'll reserve the details of the configuration until I get some leads... I have not seen any similar error in my googling.
(snip) rlm_eap_tls: Authenticate rlm_eap_tls: Length Included rlm_eap_tls: <<<< TLS 1.0 Alert [length 0002], fatal certificate_unknown TLS Alert read:fatal:certificate unknown TLS_accept:failed in SSLv3 read client certificate A rlm_eap_tls: SSL_read Error 14220:error:14094416:SSL routines:SSL3_READ_BYTES:sslv3 alert certificate unknown:s3_pkt.c:1052:SSL alert number 46 14220:error:140940E5:SSL routines:SSL3_READ_BYTES:ssl handshake failure:s3_pkt.c:837: Error code is ..... 5 Error in SSL ..... 5 rlm_eap_tls: BIO_read Error Error code is ..... 5 Error in SSL ..... 5 - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html