Re: intermediate CA authentication failing
On 9/13/07, mallika <[EMAIL PROTECTED]> wrote: > > Thank you very much for your reply.Which freeradius server version will > support this facility.Because we are implenting it in our product.We are > using CENT OS -kernel 2.4.20 .Is there any patches are available to upgrade > freeradius.please help me. Mallika, I don't know if your product is going to use an embedded linux version with some weird hardware.. if that's not the case and you are using an unpatched kernel, you are running toward a shipload of problems. I'd suggest using a recent kernel, with all its bugs fixed. As for freeradius, you should download and compile the latest stable version (and upgrade the needed libraries as well) with its security fixes rather than looking for a patch which is unlikely to work and even to exist at all. Latest stable version is 1.1.7 - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: intermediate CA authentication failing
mallika wrote: > Thank you very much for your reply.Which freeradius server version will > support this facility. What part of my message was unclear? The most recent one. Read the web page. It's really not that hard. > Because we are implenting it in our product. Could you explain why you chose a version that is *years* old? > We are > using CENT OS -kernel 2.4.20 .Is there any patches are available to upgrade > freeradius.please help me. I've been trying... Alan DeKok. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: intermediate CA authentication failing
Thank you very much for your reply.Which freeradius server version will support this facility.Because we are implenting it in our product.We are using CENT OS -kernel 2.4.20 .Is there any patches are available to upgrade freeradius.please help me. Alan DeKok-4 wrote: > > mallika wrote: >> I am using freeradius 1.0.2. > > Why? > >> ...in that case it is not checking for certificate chain >> deapth. IT is giving error 22 and unknown CA.please can any body help me >> . > > Because 1.0.2 doesn't have that functionality. > > Upgrade to the most recent version of the server. > > Alan DeKok. > - > List info/subscribe/unsubscribe? See > http://www.freeradius.org/list/users.html > > -- View this message in context: http://www.nabble.com/intermediate-CA-authentication-failing-tf4433620.html#a12649276 Sent from the FreeRadius - User mailing list archive at Nabble.com. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: intermediate CA authentication failing
mallika wrote: > I am using freeradius 1.0.2. Why? > ...in that case it is not checking for certificate chain > deapth. IT is giving error 22 and unknown CA.please can any body help me . Because 1.0.2 doesn't have that functionality. Upgrade to the most recent version of the server. Alan DeKok. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
intermediate CA authentication failing
I am using freeradius 1.0.2. By using the openssl i created selfsigned root certificate and from that i created intermediate ca certificate.By using the intermediate CA i created user certificate.When in 802.1x wired EAP-TLS authentication , from the client side i was providing the certificate certified by the intermediate CA.I copied rootCA and Intermediate CA to /etc/raddb/certs.in that case it is not checking for certificate chain deapth. IT is giving error 22 and unknown CA.please can any body help me . -- View this message in context: http://www.nabble.com/intermediate-CA-authentication-failing-tf4433620.html#a12648775 Sent from the FreeRadius - User mailing list archive at Nabble.com. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html