Hi, > GeoTrust and installed, but now I have another certificate problem. I > believe this one is that the client doesn't recognize my ca.pem as being > signed by a trusted authority. Do I need to get another root cert signed > by GeoTrust? If so, how do I go about doing that? > > FR v2.1.10 > > [peap] <<< TLS 1.0 Alert [length 0002], fatal unknown_ca > TLS Alert read:fatal:unknown CA > TLS_accept: failed in SSLv3 read client certificate A
this error is usually when the client is misconfigured in their trust settings why wouldnt your ca.pen file be trusted? does it not contain the whole cert chain (in the right order?) alan - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
