need help with error

Thibault Le Meur Thibault.LeMeur at supelec.fr
Mon Sep 25 17:07:46 CEST 2006


> 
> I have noticed in my log's this error and do not know what it 
> means, or 
> where to look to start fixing it..
> 
>  rlm_eap_tls:  Length Included
> Mon Sep 25 08:58:16 2006 : Error:     TLS_accept:error in SSLv3 read 
> client cert ificate A

I suppose you are using the EAP-TLS module to proceed the first part of
another EAP protocol (such as EAP-TTLS or PEAP).

In this case the EAP-TLS module is used to established the TLS tunnel
without verifying the client certificate because in EAP-TTLS or PEAP there
is no certificate on the client side.
The EAP-TLS module is just reporting the lack of client certificate, which
can be considered as an error if used in a full EAP-TLS exchange, but not in
EAP-TTLS or PEAP.

HTH,
Thibault






More information about the Freeradius-Users mailing list