<table cellspacing='0' cellpadding='0' border='0' ><tr><td valign='top' style='font: inherit;'><br>
Thanks for the tips. <br>
If the certificates are fine then <br>
the only problem here is the radius server.<br>
XP can not authenticate the client & can't get connected.<br>
<br>
here the output<br>
Ready to process requests.<br>
User-Name = "MarsNet_Client"<br>
NAS-IP-Address = 0.0.0.0<br>
Framed-MTU = 1488<br>
Called-Station-Id = "00:30:1a:29:03:66"<br>
Calling-Station-Id = "00:1c:f0:10:56:b8"<br>
NAS-Port-Type = Wireless-802.11<br>
NAS-Identifier = "127.0.0.1"<br>
Connect-Info = "CONNECT 11Mbps 802.11b"<br>
EAP-Message = 0x02020013014d6172734e65745f436c69656e74<br>
Message-Authenticator = 0x00ebc8fcffd2c906e2d36ec4fff17d3a<br>
+- entering group authorize<br>
++[preprocess] returns ok<br>
++[chap] returns noop<br>
++[mschap] returns noop<br>
rlm_realm: No '@' in User-Name = "MarsNet_Client", looking up realm NULL<br>
rlm_realm: No such realm "NULL"<br>
++[suffix] returns noop<br>
rlm_eap: EAP packet type response id 2 length 19<br>
rlm_eap: No EAP Start, assuming it's an on-going EAP conversation<br>
++[eap] returns updated<br>
++[unix] returns notfound<br>
++[files] returns noop<br>
++[expiration] returns noop<br>
++[logintime] returns noop<br>
rlm_pap: WARNING! No "known good" password found for the user. Authentication may fail because of this.<br>
++[pap] returns noop<br>
rad_check_password: Found Auth-Type EAP<br>
auth: type "EAP"<br>
+- entering group authenticate<br>
rlm_eap: EAP Identity<br>
rlm_eap: processing type tls<br>
rlm_eap_tls: Requiring client certificate<br>
rlm_eap_tls: Initiate<br>
rlm_eap_tls: Start returned 1<br>
++[eap] returns handled<br>
EAP-Message = 0x010300060d20<br>
Message-Authenticator = 0x00000000000000000000000000000000<br>
State = 0x7382effe7381e2540240fd45d4418b28<br>
Finished request 4.<br>
Going to the next request<br>
Waking up in 4.9 seconds.<br>
Cleaning up request 4 ID 1 with timestamp +930<br>
Ready to process requests.<br>
User-Name = "MarsNet_Client"<br>
NAS-IP-Address = 0.0.0.0<br>
Framed-MTU = 1488<br>
Called-Station-Id = "00:30:1a:29:03:66"<br>
Calling-Station-Id = "00:1c:f0:10:56:b8"<br>
NAS-Port-Type = Wireless-802.11<br>
NAS-Identifier = "127.0.0.1"<br>
Connect-Info = "CONNECT 11Mbps 802.11b"<br>
EAP-Message = 0x02010013014d6172734e65745f436c69656e74<br>
Message-Authenticator = 0xd79261edb8c5b177b0b6334837684449<br>
+- entering group authorize<br>
++[preprocess] returns ok<br>
++[chap] returns noop<br>
++[mschap] returns noop<br>
rlm_realm: No '@' in User-Name = "MarsNet_Client", looking up realm NULL<br>
rlm_realm: No such realm "NULL"<br>
++[suffix] returns noop<br>
rlm_eap: EAP packet type response id 1 length 19<br>
rlm_eap: No EAP Start, assuming it's an on-going EAP conversation<br>
++[eap] returns updated<br>
++[unix] returns notfound<br>
++[files] returns noop<br>
++[expiration] returns noop<br>
++[logintime] returns noop<br>
rlm_pap: WARNING! No "known good" password found for the user. Authentication may fail because of this.<br>
++[pap] returns noop<br>
rad_check_password: Found Auth-Type EAP<br>
auth: type "EAP"<br>
+- entering group authenticate<br>
rlm_eap: EAP Identity<br>
rlm_eap: processing type tls<br>
rlm_eap_tls: Requiring client certificate<br>
rlm_eap_tls: Initiate<br>
rlm_eap_tls: Start returned 1<br>
++[eap] returns handled<br>
EAP-Message = 0x010200060d20<br>
Message-Authenticator = 0x00000000000000000000000000000000<br>
State = 0xae557800ae5775e5b09645c04263a306<br>
Finished request 5.<br>
Going to the next request<br>
Waking up in 4.9 seconds.<br>
Cleaning up request 5 ID 3 with timestamp +950<br>
Ready to process requests.<br>
<br><br>--- On <b>Mon, 7/7/08, Ivan Kalik <i><tnt@kalik.net></i></b> wrote:<br><blockquote style="border-left: 2px solid rgb(16, 16, 255); margin-left: 5px; padding-left: 5px;">From: Ivan Kalik <tnt@kalik.net><br>Subject: Re: Private key<br>To: "FreeRadius users mailing list" <freeradius-users@lists.freeradius.org><br>Date: Monday, July 7, 2008, 10:38 PM<br><br><pre>Why do you care if "Windows does not have enough information to verify<br>this certificate"? Does radius server have any problems with it?<br><br>Ivan Kalik<br>Kalik Informatika ISP<br><br>-<br>List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html</pre></blockquote></td></tr></table><br>