Re: [ttls] <<< Unknown TLS version [length 0002]
gabriel_skupien
gabriel_skupien at o2.pl
Wed May 20 16:45:08 CEST 2015
What about this part of the error:
"TLS Alert read:fatal:access denied
TLS_accept: failed in SSLv3 read client certificate A
rlm_eap: SSL error error:14094419:SSL routines:SSL3_READ_BYTES:tlsv1 alert
access denied
SSL: SSL_read failed inside of TLS (-1), TLS session fails.
TLS receive handshake failed during operation"
?
This is not cosmetic for sure :)
Dnia 20 maja 2015 16:28 Arran Cudbard-Bell <a.cudbardb at freeradius.org>
napisaĆ(a):
> > On 20 May 2015, at 10:02, Alan DeKok <aland at deployingradius.com>
> > wrote:
> >
> >
> > On May 20, 2015, at 9:50 AM, gabriel_skupien <gabriel_skupien at o2.pl>>
> > wrote:
> >
> > > Problem with TTLS setup. EAP clients negotiate TLSv1.2 but FR
> > > reports> "Unknown TLS version". Any idea? It's a TLS issue. Either OpenSSL doesn't understand TLSv1.2, or>
> > FreeRADIUS was built using the wrong version of OpenSSL.I'm fairly sure this was a cosmetic issue that was fixed recently when
> we> were looking at tls 1.2 and wpa_supplicant.
>
>
> OP will likely find it works as expected in v3.0.8, can't remember if it>
> was backported to v2.2.x.
>
>
> If it wasn't, I vote nofix because v2.2.x is EOL and OP should upgrade
> to> v3.0.8.
>
>
> -Arran
>
>
> Arran Cudbard-Bell <a.cudbardb at freeradius.org>
>
> FreeRADIUS development team
>
>
> FD31 3077 42EC 7FCD 32FE 5EE2 56CF 27F9 30A8 CAA2
>
>
> > -> List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
More information about the Freeradius-Users
mailing list