Meaning of errormessage?

Tom Schmitt TomSchmitt at gmx.de
Mon Mar 30 13:57:58 CEST 2009


Hi,

i use an old version of freeradius, 1.1.2. And yes, I will upgrade to a new version soon.

But for now I have a question regarding a few errormessages I see in my logfile. Maybe someone caould help me to understand them.

I use EAP with TSL to authenticate clients which are sending their certificate which are installed on each client and I have on my Radiusserver the root certificate to verify them.

It is working, the clients are authenticated and happy, but in the logfile of the Radiusserver I see each time the following messages:

> Wed Mar 25 16:49:53 2009 : Error:     TLS_accept:error in SSLv3 read client certificate A
> Wed Mar 25 16:49:53 2009 : Error: rlm_eap: SSL error error:00000000:lib(0):func(0):reason(0)
> Wed Mar 25 16:49:54 2009 : Error: rlm_eap: SSL error error:00000000:lib(0):func(0):reason(0)
> Wed Mar 25 16:49:54 2009 : Auth: Login OK: [host/client01.example.com] (from client WLANCONTROLLER nasid WLANCONTROLLER port 29 cli 00-23-34-35-36-36)

As I understand the first lines, the Radiusserver can't read the certificate. But if this is true, how the hell could the Login be OK? Without certificate the Authentication should fail, shouldn't it? But if the certificates are okay, what is the meaning of the errormessages?

Sorry if this is trivial for some of you, but I really have no idea what to do with this.

Tom.

-- 
Neu: GMX FreeDSL Komplettanschluss mit DSL 6.000 Flatrate + Telefonanschluss für nur 17,95 Euro/mtl.!* http://dsl.gmx.de/?ac=OM.AD.PD003K11308T4569a



More information about the Freeradius-Users mailing list