Hello, I have compiled Freeradius for building a Campus WLAN. I want to use TLS.
TLS is working flawless with openssl certifactes. But, I don`t want the users to use a command line to generate their certificate for authenticating to the network. I need a WebInterface. Is there any way to use certificates generated by Windows 200x Certifiacte Services in Freeradius ? I can include the RootCertificate if I download it in Base64. But I can`t generate a certifiace for the freeradius-server itself. 885:error:0906D06C:PEM routines:PEM_read_bio:no start line:pem_lib.c:632:Expecting: CERTIFICATE 885:error:0906D06C:PEM routines:PEM_read_bio:no start line:pem_lib.c:632:Expecting: ANY PRIVATE KEY 885:error:140B0009:SSL routines:SSL_CTX_use_PrivateKey_file:PEM lib:ssl_rsa.c:707: rlm_eap_tls: Error reading private key file rlm_eap: Failed to initialize type tls radiusd.conf[9]: eap: Module instantiation failed. Are Freeradius and MS-generated certificates incompatible or is there anything special when generating the certifacte ? As an alternative: Has anybody used OpenCA oder IDX-PKI with Freeradius ? Regards, Robert M. Albrecht - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
