Hello,
I am trying to run JRadius client Simulator against FreeRADIUS using
EAP-TLS authentication. I was under the impression that these two
offerings worked together right out of the box. I have tested my certs
against FreeRADIUS using Microsoft supplicant and all is well. Will
someone tell me what they think might be the problem. Please see the
FreeRADIUS TLS messages, below. Your help will be greatly appreciated.
Bill
--> User-Name = user1
[tls] --> BUF-Name = 3eTI Test Cert (rsa1)
[tls] --> subject = /C=US/ST=Maryland/O=3eTI/OU=Engineering/CN=3eTI Test
Cert (rsa1)/emailaddress=wbickf...@efjohnson.com
[tls] --> issuer = /C=US/ST=Maryland/O=3eTI/OU=Engineering/CN=3eTI RSA
Engineering Test Intermediate CA/emailaddress=wbickf...@efjohnson.com
[tls] --> verify return:1
[tls] TLS_accept: SSLv3 read client certificate A
[tls] <<< TLS 1.0 Handshake [length 0086], ClientKeyExchange
[tls] TLS_accept: SSLv3 read client key exchange A
[tls] <<< TLS 1.0 ChangeCipherSpec [length 0001]
[tls] <<< TLS 1.0 Handshake [length 0010], Finished
[tls] >>> TLS 1.0 Alert [length 0002], fatal unexpected_message
TLS Alert write:fatal:unexpected_message
TLS_accept:failed in SSLv3 read certificate verify B
rlm_eap: SSL error error:140880AE:SSL
routines:SSL3_GET_CERT_VERIFY:missing verify message
SSL: SSL_read failed inside of TLS (-1), TLS session fails.
TLS receive handshake failed during operation
[tls] eaptls_process returned 4
[eap] Handler failed in EAP/tls
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
