FreeRadius works, but i cant connect with WIndows!

Stefan Winter stefan.winter at
Fri Jun 15 12:08:52 CEST 2018

>> read:fatal:unknown CA Wed Jun 13 11:31:11 2018 : Auth: (203) Login
>> incorrect (eap_peap: TLS Alert read:fatal:unknown CA):
>> [host/<via Auth-Type = eap>] (from client
>> SVG_EDV1 port 0 cli 74-E5-F9-83-97-3A)
> I cant conect to WLAN with my Mac or Windows, it just work with Mobile Phones ;/ What can i do?

It does not work on your mobile phones.

Maybe you can *connect* with your mobile phone, but there's more to

Your device must be sure to send its configured username and password
only to the authorised server of your organisation, not a random
third-party (attacker).

To that end, you have to configure on your client device *which server*
from *which CA* you expect.

In your phone example, you have configured none of that and while you
successfully send your password to your server (and can connect), your
device would just as well send the password to someone else's server
(who will also connect you, but collect your password in the process).

The error message above is actually a GoodThing(tm): the client tells
you that it does not trust you - because of missing or incorrect
certificate information.


Ingenieur de Recherche
Fondation RESTENA - Réseau Téléinformatique de l'Education Nationale et
de la Recherche
2, avenue de l'Université
L-4365 Esch-sur-Alzette

Tel: +352 424409 1
Fax: +352 422473

PGP key updated to 4096 Bit RSA - I will encrypt all mails if the
recipient's key is known to me
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 833 bytes
Desc: OpenPGP digital signature
URL: <>

More information about the Freeradius-Users mailing list