Re: ipad ssl error in free radius

2013-09-19 Thread Stefan Winter
: TLS Alert read:warning:close notify Tue Sep 17 13:36:25 2013 : Error: TLS_accept: failed in SSLv3 read client certificate A Tue Sep 17 13:36:25 2013 : Error: rlm_eap: SSL error error:140940E5:SSL routines:SSL3_READ_BYTES:ssl handshake failure Tue Sep 17 13:36:25 2013 : Error: SSL: SSL_read

Re: ipad ssl error in free radius

2013-09-19 Thread Alan DeKok
val john wrote: Tue Sep 17 13:36:25 2013 : Error: TLS Alert read:warning:close notify This means that the *other* end shut down the TLS connection. To be polite, it sent a notification that it was doing so. Do you guys any idea what cause this issue Maybe there's something in the CA /

RE: ipad ssl error in free radius

2013-09-19 Thread John Carter
us.org] On Behalf Of val john Sent: 19 September 2013 05:28 To: FreeRadius users mailing list Subject: ipad ssl error in free radius hi guys we are getting follwong error in our radius log when ipad trying to connect to our WIFI network , our WIFI network using EAP-TTLS + LDAP authentication

ipad ssl error in free radius

2013-09-18 Thread val john
:36:25 2013 : Error: TLS Alert read:warning:close notify Tue Sep 17 13:36:25 2013 : Error: TLS_accept: failed in SSLv3 read client certificate A Tue Sep 17 13:36:25 2013 : Error: rlm_eap: SSL error error:140940E5:SSL routines:SSL3_READ_BYTES:ssl handshake failure Tue Sep 17 13:36:25 2013 : Error

SSL error

2013-05-31 Thread David Peterson
I just compiled the master git branch and am getting this error: rlm_eap_tls: Failed initializing SSL context rlm_eap (EAP): Failed to initialise rlm_eap_tls /usr/local/etc/raddb/mods-enabled/eap[17]: Instantiation failed for module eap Do you have to manually generate certs for this branch?

Re: SSL error

2013-05-31 Thread Alan Buxey
Compiled without required ssl environment being present? The debug output will have printed or more information regarding the error alan - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

HELP!!! Error: rlm_eap: SSL error

2011-11-29 Thread Victor Guk
write:fatal:certificate expired Tue Nov 29 17:16:02 2011 : Error: TLS_accept:error in SSLv3 read client certificate B Tue Nov 29 17:16:02 2011 : Error: rlm_eap: SSL error error:140890B2:SSL routines:SSL3_GET_CLIENT_CERTIFICATE:no certificate returned - List info/subscribe/unsubscribe? See http

Re: HELP!!! Error: rlm_eap: SSL error

2011-11-29 Thread Alan DeKok
Victor Guk wrote: what's wrong? Help! ... Tue Nov 29 17:16:02 2011 : Error: TLS Alert write:fatal:certificate expired What does that line say? Alan DeKok. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

Re: HELP!!! Error: rlm_eap: SSL error

2011-11-29 Thread Alan Buxey
Alert write:fatal:certificate expired Tue Nov 29 17:16:02 2011 : Error: TLS_accept:error in SSLv3 read client certificate B Tue Nov 29 17:16:02 2011 : Error: rlm_eap: SSL error error:140890B2:SSL routines:SSL3_GET_CLIENT_CERTIFICATE:no certificate returned options: client has wrong

Re: HELP!!! Error: rlm_eap: SSL error

2011-11-29 Thread Victor Guk
29.11.2011 19:54, freeradius-users-requ...@lists.freeradius.org пишет: options: client has wrong certificate client has wrong date/time set on it certificate has expired alan The time is set correctly. Certificate has expired. Can I renew it without breaking. Or to create a new one? - List

Re: HELP!!! Error: rlm_eap: SSL error

2011-11-29 Thread Alan Buxey
you can create a new RADIUS cert whenever you want. Just ensure its signed by same CA and has same details such as CN . If you want to change CA then client config changes will be needed (likewise for CN changes) ...that assumes the clients were configured properly/securely. If its just a

SSL error after updating cert

2011-10-21 Thread Eric Geier
Hi, I’m trying to update my server’s cert, but getting errors after applying it: Fri Oct 21 12:26:45 2011 : Error: TLS Alert read:fatal:certificate expired Fri Oct 21 12:26:45 2011 : Error: TLS_accept:failed in SSLv3 read client certificate A Fri Oct 21 12:26:45 2011 : Error: rlm_eap: SSL

Re: SSL error after updating cert

2011-10-21 Thread James J J Hooper
21 12:26:45 2011 : Error: rlm_eap: SSL error error:14094415:SSL routines:SSL3_READ_BYTES:sslv3 alert certificate expired Fri Oct 21 12:26:45 2011 : Error: rlm_eap_tls: SSL_read failed inside of TLS (-1), TLS session fails. Says expired but I’m using the new cert, which is a renewal from a third

Re: SSL error after updating cert

2011-10-21 Thread Eric Geier
, but getting errors after applying it: Fri Oct 21 12:26:45 2011 : Error: TLS Alert read:fatal:certificate expired Fri Oct 21 12:26:45 2011 : Error: TLS_accept:failed in SSLv3 read client certificate A Fri Oct 21 12:26:45 2011 : Error: rlm_eap: SSL error error:14094415:SSL

Re: SSL error after updating cert

2011-10-21 Thread James J J Hooper
On 21/10/2011 22:31, Eric Geier wrote: Thanks for the reply! Yes, the clients are set with correct time/date. That command didn't work. Did you mean openssl verify command? I ran that and both the old cert (still valid for a few days) and the new cert (already valid) shows correct domain but

Re: rlm_eap: SSL error

2011-09-02 Thread Chad Rebuck
Thanks, I ended up deleting all the recently created files in /etc/raddb/certs and issuing the bootstrap command. I did have to mkdir /var/run/radiusd after I saw an error about a file radiusd was looking for there, but it works fine afterwards. On Thu, Sep 1, 2011 at 11:53 PM, Alan DeKok

rlm_eap: SSL error

2011-09-01 Thread Chad Rebuck
= http://127.0.0.1/ocsp/; } } rlm_eap: SSL error error::lib(0):func(0):reason(0) rlm_eap_tls: Error loading randomness rlm_eap: Failed to initialize type tls /etc/raddb/eap.conf[17]: Instantiation failed for module eap /etc/raddb/sites-enabled/default[299]: Failed to load module eap

Re: rlm_eap: SSL error

2011-09-01 Thread Alan DeKok
Chad Rebuck wrote: Can someone point me in the right direction on figuring this out? I'm running Arch linux and I installed via pacman -S freeradius. I didn't edit any config files yet. It's supposed to build the various cert files the first time it's booted. If that isn't happening

rlm_eap: SSL error error on Start Up, Compile question

2010-05-19 Thread Jeff Stout
it is Instantiating the eap-tls Module. rlm_eap: SSL error error:02001002:system library:fopen:No such file or directory rlm_eap_tls: Error reading certificate file /etc/freeradius/certs/server.pem rlm_eap: Failed to initialize type tls /etc/freeradius/eap.conf[17]: Instantiation failed for module eap /etc

Re: rlm_eap: SSL error error on Start Up, Compile question

2010-05-19 Thread Alan DeKok
Jeff Stout wrote: I modified the /usr/local/freeradius/debian/rules and removed the dh_lintian reference under the tree “Binary Common” IS dh_lintian REQUIRED for freeradius to compile and operate correctly Apparently not. under my “certs” directory I do not have a server.pem

Re: TLS/SSL Error?

2010-03-19 Thread Alan Buxey
Hi, from. My Free radius server has a Thawte Certificate installed. I'm not sure what the message means? usually a misconfigured client eg they are checking the cert against the wrong CA or no CA etc. alan - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

TLS/SSL Error?

2010-03-18 Thread Mike Diggins
radius server has a Thawte Certificate installed. I'm not sure what the message means? Mar 18 15:01:01 rad01 radiusd[8452]: TLS Alert read:fatal:unknown CA Mar 18 15:01:01 rad01 radiusd[8452]: TLS_accept:failed in SSLv3 read client certificate A Mar 18 15:01:01 rad01 radiusd[8452]: rlm_eap: SSL

Re: TLS/SSL Error?

2010-03-18 Thread Alan DeKok
Mike Diggins wrote: I just recently enabled a WPA SSID on our wireless network. PEAP with MSCHAP V2 is the EAP method. As far as I know it's working correctly (from all my test clients anyway), but I have seen a number of these messages logged (FreeRadius 2.1.3) and I don't know where they're

Error: rlm_eap: SSL error error:00000000:lib(0):func(0):reason(0)

2009-08-05 Thread Heivilin, Jim
I'm seeing lots of Wed Aug 5 10:40:28 2009 : Error: TLS_accept:error in SSLv3 read client certificate A Wed Aug 5 10:40:28 2009 : Error: rlm_eap: SSL error error::lib(0):func(0):reason(0) In my radius logs. I'm fairly certain I've done this research before but I don't have any

Re: Error: rlm_eap: SSL error error:00000000:lib(0):func(0):reason(0)

2009-08-05 Thread Alan DeKok
Heivilin, Jim wrote: I'm seeing lots of Wed Aug 5 10:40:28 2009 : Error: TLS_accept:error in SSLv3 read client certificate A Wed Aug 5 10:40:28 2009 : Error: rlm_eap: SSL error error::lib(0):func(0):reason(0) That was fixed some time *way* back in the 1.1 versions

Re: rlm_eap: SSL error error:0906D06C:PEM routines:PEM_read_bio:no start line

2008-09-25 Thread sth
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Venkat, Sorry for the response lag; I just noticed your post when searching for the same issue before realizing the problem. Was your server.key really created with the password whatever? (Check your .../raddb/certs/server.cnf file for the

rlm_eap: SSL error error:0906D06C:PEM routines:PEM_read_bio:no start line

2008-07-17 Thread Venkat
/certs/bootstrap Thu Jul 17 18:04:42 2008 : Debug:} Thu Jul 17 18:04:42 2008 : Error: rlm_eap: SSL error error:0906D06C:PEM routines:PEM_read_bio:no start line Thu Jul 17 18:04:42 2008 : Error: rlm_eap_tls: Error reading private key file /usr/local/etc/raddb/certs/test_SAI.pem Thu Jul 17 18:04:42

SSL error

2008-02-19 Thread Eduardo Lima
I'm trying to build a radius server with PEAP-mschap but it's not working because an ssl error: short Log below: modcall[authorize]: module eap returns updated for request 1 users: Matched entry teste at line 59 modcall[authorize]: module files returns ok for request 1 modcall

Re: SSL error

2008-02-19 Thread Ivan Kalik
trying to build a radius server with PEAP-mschap but it's not working because an ssl error: short Log below: modcall[authorize]: module eap returns updated for request 1 users: Matched entry teste at line 59 modcall[authorize]: module files returns ok for request 1 modcall

Re: SSL error

2008-02-19 Thread Alan DeKok
Eduardo Lima wrote: I'm trying to build a radius server with PEAP-mschap but it's not working because an ssl error: No. The error is 0, meaning no error. Seeing the error in the debug log also means you're using an old version of the server, and should upgrade to at least 1.1.7. Alan

URGENT: SSL error error:1408F119:SSL routines:SSL3_GET_RECORD:decryption failed or bad record mac

2007-04-12 Thread German Hernandez
Yahoo! Espacio para todos tus mensajes, antivirus y antispam ¡gratis! Regístrate ya - http://correo.yahoo.com.mx/ ... ... Wed Apr 11 12:30:40 2007 : Error: rlm_eap: SSL error error:1408F119:SSL routines:SSL3_GET_RECORD:decryption failed or bad record mac Wed Apr 11 12:30:40 2007 : Error: rlm_eap_tls

Re: rlm_eap: SSL error

2007-01-19 Thread K. Hoercher
Hi, please mark the difference between those two errors: Wed Jan 17 08:00:11 2007 : Error: TLS_accept:error in SSLv3 read client certificate A (other): SSL negotiation finished successfully rlm_eap: SSL error error::lib(0):func(0):reason(0) The first one, which looks

Re: rlm_eap: SSL error

2007-01-17 Thread James Lever
: TLS 1.0 Handshake [length 0010], Finished TLS_accept: SSLv3 write finished A TLS_accept: SSLv3 flush data (other): SSL negotiation finished successfully rlm_eap: SSL error error::lib(0):func(0):reason(0) SSL Connection Established eaptls_process returned 13 modcall

rlm_eap: SSL error

2007-01-16 Thread James Lever
client certificate A Wed Jan 17 08:00:11 2007 : Error: rlm_eap: SSL error error: :lib(0):func(0):reason(0) Wed Jan 17 08:00:11 2007 : Error: rlm_eap: SSL error error: :lib(0):func(0):reason(0) Wed Jan 17 08:00:11 2007 : Auth: Login OK: [wireless- client.jamver.id.au] (from client

Re: rlm_eap: SSL error

2007-01-16 Thread Alan DeKok
: rlm_eap: SSL error error::lib(0):func(0):reason(0) Wed Jan 17 08:00:11 2007 : Error: rlm_eap: SSL error error::lib(0):func(0):reason(0) OpenSSL puts a lot of effort into telling the application that there was an error, and then saying nope, no error when asked for more details. Now

rlm_eap: SSL error

2006-11-27 Thread Bruno Costacurta
Hello, I receive the following errors : Error: rlm_eap: SSL error error::lib(0):func(0):reason(0) .. Error: Trying to look up name of unknown client 127.0.0.1. .. (please see hereafter more complete log) I'm confused by the fact that this config was working fine few days. Apparently

SSL error using MS-CHAPv2 - new in 1.1.2

2006-06-06 Thread Stefan Winter
Hi, I logged in via PEAP after a brand-new upgrade to 1.1.2 today, and saw a new error message (everything worked fine though): Error: TLS_accept:error in SSLv3 read client certificate A Error: rlm_eap: SSL error error::lib(0):func(0):reason(0) Error: rlm_eap: SSL error error

Re: SSL error using MS-CHAPv2 - new in 1.1.2

2006-06-06 Thread thomas hahusseau
today, and saw a newerror message (everything worked fine though):Error: TLS_accept:error in SSLv3 read client certificate AError: rlm_eap: SSL error error::lib(0):func(0):reason(0) Error: rlm_eap: SSL error error::lib(0):func(0):reason(0)Info: rlm_eap_mschapv2: Issuing

Re: SSL error using MS-CHAPv2 - new in 1.1.2

2006-06-06 Thread Stefan Winter
Hi, Error: TLS_accept:error in SSLv3 read client certificate A Error: rlm_eap: SSL error error::lib(0):func(0):reason(0) Error: rlm_eap: SSL error error::lib(0):func(0):reason(0) Info: rlm_eap_mschapv2: Issuing Challenge Auth: Login OK: [EMAIL PROTECTED] (from client

Re: SSL error using MS-CHAPv2 - new in 1.1.2

2006-06-06 Thread Alan DeKok
Stefan Winter [EMAIL PROTECTED] wrote: I logged in via PEAP after a brand-new upgrade to 1.1.2 today, and saw a new error message (everything worked fine though): Error: TLS_accept:error in SSLv3 read client certificate A Error: rlm_eap: SSL error error::lib(0):func(0):reason(0