EAP advanced auth. methods problem

tnt at kalik.net tnt at kalik.net
Mon Nov 23 22:10:10 CET 2009


> Paul Ryszka wrote:
>> On Mon, 2009-11-23 at 20:37 +0100, Tomas Pelka wrote:
>>> tnt at kalik.net wrote:
>>>>> Also tried modify wpa_supplicant conf:
>>>>>
>>>>> - ca_cert="ca.pem"
>>>>> + ca_cert="server.pem"
>>>>>
>>>>> But with the same result.
>>>> Because the path is wrong, ie. certificate is not there. Put the
>>>> correct
>>>> path to where you have imported the certificate.
>>>>
>>>> Ivan Kalik
>>>>
>>>> -
>>>> List info/subscribe/unsubscribe? See
>>>> http://www.freeradius.org/list/users.html
>>> Sorry, but I'm still more than confused.
>>>
>>> Problem is on the server site, isn't it? CA and server certs are now in
>>> same dir as whole RADIUS configuration, is necessary put certs into
>>> "trusted" directory like /etc/ssl/certs?
>>>
>>> Thanks for advice.
>>>
>>
>> I think that the idea was to put the full path to certificates in the
>> conf file like :
>> ca_cert="/full/path/to/server.pem"
>>
>>
>>
>> -
>> List info/subscribe/unsubscribe? See
>> http://www.freeradius.org/list/users.html
>
> Same result, full path on both sites (client/server).

If ca certificate on the client is where ca_cert configuration item is
pointing the problem must be with permissions.

Ivan Kalik




More information about the Freeradius-Users mailing list