Hi,
> > > OpenSSL: tls_connection_ca_cert - Failed to load root certificates
> > error::lib(0):func(0):reason(0)
permissions of the /etc/raddb/certs/ directory? can eapol_test (which is a fine
tool for checking EAP methods - eg for your ntlm_auth with MSCHAPv2) read
the cert? is FreeRADI
On Fri, Oct 28, 2011 at 5:50 PM, Martin Ubank wrote:
> I've not been able to fix it yet.
> The Openssl-Users list hasn't been able to suggest anything.
>
> I am running 'eapol_test -c test.conf -s testing123' from the CentOS VM on
> which FreeRadius is installed.
Could you please send me the ful
Martin Ubank wrote:
>> Martin Ubank wrote:
>>> The following lines from the output of the 'eapol_test' command seem
>> to indicate a problem with the root certificate.:
>>> OpenSSL: tls_connection_ca_cert - Failed to load root certificates
>> error::lib(0):func(0):reason(0)
>>
>> Fix that
>
> Martin Ubank wrote:
> > The following lines from the output of the 'eapol_test' command seem
> to indicate a problem with the root certificate.:
> >
> > OpenSSL: tls_connection_ca_cert - Failed to load root certificates
> error::lib(0):func(0):reason(0)
>
> Fix that and it should wo
eply, I spent about 3 hours on reading debugging
outputs an 1 Minute before I will post it to you I thought "let's restart
the Server" and "plop everything works fine.
--
View this message in context:
http://freeradius.1045715.n5.nabble.com/RADIUS-certificate-compatibility-warning-tp4932007p4933026.html
Sent from the FreeRadius - User mailing list archive at Nabble.com.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Martin Ubank wrote:
> Understood. By enclosing my .cnf files, I was hoping someone on the list
> might point out what I'd done wrong.
Honestly... I don't read that stuff. It's OpenSSL magic that I try to
avoid.
> Can you supply the content of the .cnf files you used (obviously with site
> i
Thanks for your reply.
> > The following lines from the output of the 'eapol_test' command seem
> > to indicate a problem with the root certificate.:
> >
> > OpenSSL: tls_connection_ca_cert - Failed to load root certificates
> > error::lib(0):func(0):reason(0)
>
> Fix that and it should
On 24 Oct 2011, at 16:19, Alan DeKok wrote:
> Thomas Brighton wrote:
>> Hello i have a similar Problem, my radiusd-X output looks like
>>
>> # Executing section authorize from file
> ...
>> +- entering group authenticate {...}
>> [eap] Got NOTIFICATION, Ignoring the packet
>
> Well, that's stu
Martin Ubank wrote:
> The following lines from the output of the 'eapol_test' command seem to
> indicate a problem with the root certificate.:
>
> OpenSSL: tls_connection_ca_cert - Failed to load root certificates
> error::lib(0):func(0):reason(0)
Fix that and it should work.
> OpenS
Sergio NNX wrote:
> Ciao.
>
> We're also facing the same issue, but on a Windows box. We did a quick
> test using a rather old FR version (1.1.7), on the same PC and using the
> same certificates, and we get a successful result using eapol_test.
Please send the debug output for 1.1.7 && the ver
Thomas Brighton wrote:
> Hello i have a similar Problem, my radiusd-X output looks like
>
> # Executing section authorize from file
...
> +- entering group authenticate {...}
> [eap] Got NOTIFICATION, Ignoring the packet
Well, that's stupid. I don't recall seeing that before. EAP
notification
g/Certificate_Compatibility
WARNING:
!!
--
View this message in context:
http://freeradius.1045715.n5.nabble.com/RADIUS-certificate-compatibility-warning-tp4932007p4932692.html
Sent from the FreeRadius - User mailing list archive a
adius.org
> Date: Mon, 24 Oct 2011 11:25:01 +0100
> Subject: RADIUS certificate compatibility warning
>
> I've upgraded FreeRadius to 2.1.10 and Samba to 3.5.6.
> I've got right through (again) to the final "Configuring FreeRADIUS to use
> ntlm_auth for MS-CHAP&
I've upgraded FreeRadius to 2.1.10 and Samba to 3.5.6.
I've got right through (again) to the final "Configuring FreeRADIUS to use
ntlm_auth for MS-CHAP" stage but the command 'eapol_test -c
peap-mschapv2-cert-ntlm_auth.conf -s testing123' fails.
The 'radiusd -X' output finishes with :
WARNING:
14 matches
Mail list logo