rlm eap problem

A.L.M.Buxey at lboro.ac.uk A.L.M.Buxey at lboro.ac.uk
Fri May 29 15:54:14 CEST 2009


Hi,

> Now I got a new problem with rlm_eap and the server doesn't start
> anymore. You were right, I commented $INCLUDE sites-enabled/ in
> radiusd.conf.

the errors are clear enough!

>  Module: Instantiating eap-tls
>    tls {
>         rsa_key_exchange = no
>         dh_key_exchange = yes
>         rsa_key_length = 512
>         dh_key_length = 512
>         verify_depth = 0
>         pem_file_type = yes
>         private_key_file =
> "/mypath/freeradius/etc/raddb/certs/server.pem"
>         certificate_file =
> "/mypath/freeradius/etc/raddb/certs/server.pem"
>         CA_file = "/mypath/freeradius/etc/raddb/certs/ca.pem"
>         private_key_password = "whatever"
>         dh_file = "/mypath/freeradius/etc/raddb/certs/dh"
>         random_file = "/mypath/freeradius/etc/raddb/certs/random"
>         fragment_size = 1024
>         include_length = yes
>         check_crl = no
>         cipher_list = "DEFAULT"
>         make_cert_command =
> "/mypath/freeradius/etc/raddb/certs/bootstrap"
>     cache {
>         enable = no
>         lifetime = 24
>         max_entries = 255
>     }
>    }
> rlm_eap: SSL error error:02001002:system library:fopen:No such file or
> directory
> rlm_eap_tls: Error reading Trusted root CA list /mypath/freeradius/etc/raddb/certs/ca.pem
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^

ta da! what couldnt be clearer? does that file exist, if so does it have
the correct permissions?

alan



More information about the Freeradius-Users mailing list