hi dmitri
May I post to you my certs in your private mail??
i don't think that it will change anything. if you produced the
certificates with the scripts of adam, they are probably alright and
similar to all the others (for winxp add the extensions needed - see the
eap/tls howtos by ken rosner
Hi Artur
> i'm not familar with xsupplicant, sorry. i hope you added the client
> certificate WITH private key somewhere. what's this key field?
> shouldn't it be the key of the private key of the client certificate?
May I post to you my certs in your private mail??
> > at system console typing
hi
For client authorization I use xsupplicant - http://www.open1x.org/
xsupplicat config file
MegaWiFi:id = radiotest
MegaWiFi:cert = radiotest.der
MegaWiFi:key = radiotest.pem
MegaWiFi:root = root.pem
MegaWiFi:auth = EAP
MegaWiFi:type = wireless
from root.pem I remove private key
i'm not famila
Hi Artur
> you need exactly the following:
>
> > cert-clt.p12
> > cert-srv.pem
> > root.pem
For client authorization I use xsupplicant - http://www.open1x.org/
xsupplicat config file
MegaWiFi:id = radiotest
MegaWiFi:cert = radiotest.der
MegaWiFi:key = radiotest.pem
MegaWiFi:root = root.pem
Meg
hi
you need exactly the following:
> cert-clt.p12
> cert-srv.pem
> root.pem
and no private key should be in root.pem (though it doesn't matter now)
> Radiusd.conf
>
> CA_file = ${confdir}/eap-test/root.pem
this should point to root.pem from above and the root.pem should contain
public key (
Hi Artur
> > rlm_eap_tls: Length Included
> > <<< TLS 1.0 Alert [length 0002], fatal unknown_ca
> > ^^^
>
> die you add the certificate of the CA which signed and issued the user
> certificate into root.pem and configured it to be the CA file in
>
hi
> rlm_eap_tls: Length Included
> <<< TLS 1.0 Alert [length 0002], fatal unknown_ca
> ^^^
die you add the certificate of the CA which signed and issued the user
certificate into root.pem and configured it to be the CA file in
radiusd.conf?
ciao
Hi
I have programmes
openssl 0.9.7a
freeradius 0.8.1
and docs
HOWTO on EAP/TLS authentication between FreeRADIUS and XSupplicant
When I create certificates or use adam`s certs, authentication is failure. The Radiusd
error messages is down.
Why it don`t work??
modcall: group authorize ret