[prev in list] [next in list] [prev in thread] [next in thread] 

List:       freeradius-users
Subject:    Re: RADIUS certificate compatibility warning
From:       Alan Buxey <A.L.M.Buxey () lboro ! ac ! uk>
Date:       2011-10-29 21:34:18
Message-ID: 20111029213418.GB15788 () lboro ! ac ! uk
[Download RAW message or body]

Hi,

> > > OpenSSL: tls_connection_ca_cert - Failed to load root certificates
> > error:00000000:lib(0):func(0):reason(0)

permissions of the /etc/raddb/certs/ directory?  can eapol_test (which is a fine
tool for checking EAP methods - eg for your ntlm_auth with MSCHAPv2) read
the cert? is FreeRADIUS configured to read the cert?

you can also point a basic tool such as radtest to the inner-tunnel port
listener to check the workings of what would happen once the client
has negotiated an EAP tunnel

alan
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
[prev in list] [next in list] [prev in thread] [next in thread]