On 01/09/2013 06:15 AM, Ajay Garg wrote:
However, I get the exact same earlier dreaded logs :(
Sigh. This really is the thread of doom.
Find a working CA/server cert (from another machine, generated with the
same steps) and your failing ones.
Then compare the output of:
openssl x509 -noout -text -in ca.pem
openssl x509 -noout -text -in server.pem
If the certs differ substantially (applying common sense to fields that
must differ, like key hashes, dates, serial numbers, etc.) then there
might be an issue with cert generation.
If no, you're doing something wrong - much more likely IMO.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html