<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<HTML><HEAD>
<META http-equiv=Content-Type content="text/html; charset=koi8-r">
<META content="MSHTML 6.00.5730.13" name=GENERATOR>
<STYLE></STYLE>
</HEAD>
<BODY bgColor=#ffffff>
<DIV><FONT face=Arial size=2>I insert your file in my radiusd on CentOS 5.2 and
give this error(your error). Then i deleted file 'server.pem' and generated new
file by comand</FONT></DIV>
<DIV><FONT face=Arial size=2>'make server.pem' and start radiusd -X and all
ok)</FONT></DIV>
<DIV> </DIV>
<BLOCKQUOTE
style="PADDING-RIGHT: 0px; PADDING-LEFT: 5px; MARGIN-LEFT: 5px; BORDER-LEFT: #000000 2px solid; MARGIN-RIGHT: 0px">
<DIV style="FONT: 10pt arial">----- Original Message ----- </DIV>
<DIV
style="BACKGROUND: #e4e4e4; FONT: 10pt arial; font-color: black"><B>From:</B>
<A title=glenmillard@gmail.com href="mailto:glenmillard@gmail.com">Glen
Millard</A> </DIV>
<DIV style="FONT: 10pt arial"><B>To:</B> <A
title=freeradius-users@lists.freeradius.org
href="mailto:freeradius-users@lists.freeradius.org">FreeRadius users mailing
list</A> </DIV>
<DIV style="FONT: 10pt arial"><B>Sent:</B> Saturday, April 18, 2009 11:12
PM</DIV>
<DIV style="FONT: 10pt arial"><B>Subject:</B> Re: FreeRADIUS 2.1.5 on CentOS
4.4</DIV>
<DIV><BR></DIV>Of course - here you go.<BR><BR>Bag Attributes<BR>
localKeyID: CF 72 7E 0A 4C 39 6D 02 02 09 24 EA 5F E1 70 03 D2 A4 D4
40<BR>subject=/C=US/ST=California/O=
<DIV class="ii gt" id=:26m>Domatic, Inc./CN=Domatic Radius Server
Certificate/emailAddress=<A
href="mailto:Certificate/emailAddress=domain@domatic.com">domain@domatic.com</A><BR>issuer=/C=US/ST=California/L=San
Anselmo/O=Domatic, Inc./emailAddress=<A
href="mailto:Inc./emailAddress=domain@domatic.com/CN=Radius"
target=_blank>domain@domatic.com/CN=Radius</A> Certificate
Authority<BR>-----BEGIN
CERTIFICATE-----<BR>MIIDtzCCAp+gAwIBAgIBATANBgkqhkiG9w0BAQQFADCBmjELMAkGA1UEBhMCVVMx<BR>EzARBgNVBAgTCkNhbGlmb3JuaWExFDASBgNVBAcTC1NhbiBBbnNlbG1vMRYwFAYD<BR>VQQKEw1Eb21hdGljLCBJbmMuMSEwHwYJKoZIhvcNAQkBFhJkb21haW5AZG9tYXRp<BR>Yy5jb20xJTAjBgNVBAMTHFJhZGl1cyBDZXJ0aWZpY2F0ZSBBdXRob3JpdHkwHhcN<BR>MDkwNDE4MTMxMzMzWhcNMTAwNDE4MTMxMzMzWjCBiTELMAkGA1UEBhMCVVMxEzAR<BR>BgNVBAgTCkNhbGlmb3JuaWExFjAUBgNVBAoTDURvbWF0aWMsIEluYy4xKjAoBgNV<BR>BAMTIURvbWF0aWMgUmFkaXVzIFNlcnZlciBDZXJ0aWZpY2F0ZTEhMB8GCSqGSIb3<BR>DQEJARYSZG9tYWluQGRvbWF0aWMuY29tMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8A<BR>MIIBCgKCAQEAnfKJAXnRboFJnNGF7TnK+IPoQDW40PKA7oPIUMf2oFKMFAZBTSCh<BR>B0wJYU/x4YrIvIwMwTHywxhtcxHwe71m6QQD/jrjn7qTrq74BvKqjVCVVu92bbh+<BR>M9dWtENswB7PpQtrGLqaiR57XXJv5NWeDn3Oej1ccg5JKfPtAJ1zYYwg3QRaclpD<BR>yL+BRoMvd5XRrD0Ux35S05QmpXuT0+wmQpeccrV6UzghIjyyJBqYEtSBkmLRRcr5<BR>CBlBSOgILH7Zmr7lfXgUzNgp0nNHTo4SYwEOm52rIlMf7wQYPbkf/npxKfbHZj2y<BR>hbTvVdjJ/4lvVv0yeBNOLt3gwXzMqWwnVwIDAQABoxcwFTATBgNVHSUEDDAKBggr<BR>BgEFBQcDATANBgkqhkiG9w0BAQQFAAOCAQEAV94YcldNngINlTMB5Y9JjCDz3QHz<BR>K+Z/DYPEHSm0vZAhSnI3gmX0P05RcY+8YI/5ld1YaTfhj4ox8cqIA1W25Suov088<BR>YuxeoqoVRVnP88RMScBYyX/6ynHHY3E9VhgEP0L3CB4GYq+Irw5LWkaT6d0BLKAr<BR>UvSXvCrX47UZ7NkmCKqlXVA0p7EUZ96Aye5xGVA9b4CeyTRg4XQ/58gqqi714WM7<BR>9JsDQjcRPhqgPEnVNYJV6llHEyZtxo6vaoDA+pfK/4K6sSnzboBeFYIrHnkLglZu<BR>+NmTmbHJ2+7HvzY92eYrYKmiJztOLKf3ziqoRbYschzVdahj0jwUrjuAcQ==<BR>-----END
CERTIFICATE-----<BR>Bag Attributes<BR> localKeyID: CF 72 7E 0A 4C
39 6D 02 02 09 24 EA 5F E1 70 03 D2 A4 D4 40<BR>Key Attributes: <No
Attributes><BR>-----BEGIN RSA PRIVATE KEY-----<BR>Proc-Type:
4,ENCRYPTED<BR>DEK-Info:
DES-EDE3-CBC,6C3E8962A80FAF47<BR><BR>wEP6/FXBefsuut/74hDLbMn7PoFkpcPWTdpdPh42R+f7LlspU7FUZCRUIi+mVHuO<BR>EqPtzU772gmq36uIqa1uXX0RE6Dv+agNo18BD0dIbuITaUDVRtnG27kJjCFsD8a/<BR>E9iLBeW0dNNCk7/ufWaLZvsm46hs0RZCEM/VpfMER11XvmHgLnlXf895WiAhDOZ9<BR>vIldzNZZNhOxqOQ1640doN1mpAR3ZCKtVsgMUdk1e57xjr5B7QSsSGPInZGFYUc6<BR>plVv4lwakGkp19F+0L1cHSoJfBbIGTBIigMSvHartQZM+Qk0OHx5TySRl5LB1V4J<BR>NL4r/GPBkzWanasbaKTO7mC2LqDgtwOePhm3OnDPgqfox+F7mbZIwJMHkv1PzkM5<BR>DO9XERkEOLERfXBTJQNsItLMAvoD/YBsXN1pBvMoOaKNk442aorqE/vhvz3IvmFI<BR>1Rir0r42z+NAbGjnU2oi2EtHQDawq5UYxaJhiCsZFjQAcrlDCD4EicxztVnEHhVJ<BR>pzfgNzomBMFllLHi8E8PykcEUapEoySDXMcLrRh+7PdKbxktVGpyy8+WGbHMTXk7<BR>IqXJd1YXO5gTSqQ9KuParXI238o0eUphZ7LuPrieaPTZ1tDvCume9cI8AgY/rpdu<BR>/aaWYCmrbkQx30NoVRUyT/5CNcLYoWScU+n8kOeleSfrWlsxEcDUgC/KIZZ8pCd1<BR>Csbog54D6gfxZ1u5PjIYvwRMlc/zBpTjrD7/lVpcoHaNIcPiL2Mnx0u0fyxd0vGB<BR>ZsXwe12o+3i+QyuJ5f/WNCpujk8pK+bIa7vj52UKAQUCy3nitkYbPMp6GWxsWbr+<BR>hGQI4w+vWN3vBWzewJpU5SA16zp1zQGUIsBJMVMA7SaejIu+vuibq2gQOvzsMeBq<BR>JetSIJiGXG2agWcAdWc+EsJhCgCtSp0CswUk/hVSUe8CdzVX9Pufw8JI1VYFm0HJ<BR>EHuH4zPvJQsFnqil5f2LPWwvKOyV4SSkR8XYMrNJaHKfHrCCOz1XQteYwd8t4Ox+<BR>Dh/d+kW/lVaZhijymYgH0xA+03ck7MYAY7KU7bnbsESRKiNboPN4xLM91wnJgcDS<BR>+8lfqH3Tkaxwc1d1T1FmvYNK9Eo/Uxrv/3jaW9NW3lRhkE5OxUi8imqAuUGqiQcH<BR>457jVnrmXKgCD2VFdIWkYq5T+71Cjb4M8bNjdw9wXm9kYoJR0TCRc6ERcfy6BoZ5<BR>SHhObf6/5PMF+TUqE1P+ttkw2CrmQPlX9KTVFSYRpSRFt1pcW997uhER0NtOgCms<BR>ho1duSaCkPtfUtBamm5viPsauqOKwt5QEn/iAiNV3OOvA/l1GJ8QoKM+e5b6qWG3<BR>6YTsoXaN2DYi7pVQwX+0/FYQt1a9mYvch2XGoSILwFywgVvXZFhFPkD+x91UYb5J<BR>1w/hnCu5iwCfzjGvLRaZAclvshJynnIsDYUdDrUfTknoC7D4K4Tlvl4+ev9VrDPi<BR>/usPJeLCHeWehy6LL5YqfSE1JleByWO4oHR8fzwSK/20ADIbIW6d+bF11vRK6tgg<BR>iKTWFF1TdJRPfvEpHPGxnSPh/dtJsAx9FK7eELmPcepckFiZZJRN1w==<BR>-----END
RSA PRIVATE KEY-----</DIV><BR><BR><BR><BR>
<DIV class=gmail_quote>2009/4/18 Волошин Вячеслав <SPAN dir=ltr><<A
href="mailto:voloshin@maks.net"
target=_blank>voloshin@maks.net</A>></SPAN><BR>
<BLOCKQUOTE class=gmail_quote
style="PADDING-LEFT: 1ex; MARGIN: 0pt 0pt 0pt 0.8ex; BORDER-LEFT: rgb(204,204,204) 1px solid">
<DIV bgcolor="#ffffff">
<DIV>Please give file /usr/local/etc/raddb/certs/server.pem, to check
if u have it.<BR></DIV>
<BLOCKQUOTE
style="PADDING-RIGHT: 0px; PADDING-LEFT: 5px; MARGIN-LEFT: 5px; BORDER-LEFT: rgb(0,0,0) 2px solid; MARGIN-RIGHT: 0px">
<DIV>
<DIV style="FONT: 10pt arial; font-size-adjust: none">----- Original
Message ----- </DIV>
<DIV
style="BACKGROUND: rgb(228,228,228); FONT: 10pt arial; font-size-adjust: none; -moz-background-clip: -moz-initial; -moz-background-origin: -moz-initial; -moz-background-inline-policy: -moz-initial"><B>From:</B>
<A title=glenmillard@gmail.com href="mailto:glenmillard@gmail.com"
target=_blank>Glen Millard</A> </DIV></DIV>
<DIV>
<DIV></DIV>
<DIV>
<DIV style="FONT: 10pt arial; font-size-adjust: none"><B>To:</B> <A
title=freeradius-users@lists.freeradius.org
href="mailto:freeradius-users@lists.freeradius.org"
target=_blank>FreeRadius users mailing list</A> </DIV>
<DIV style="FONT: 10pt arial; font-size-adjust: none"><B>Sent:</B>
Saturday, April 18, 2009 8:32 PM</DIV>
<DIV style="FONT: 10pt arial; font-size-adjust: none"><B>Subject:</B> Re:
FreeRADIUS 2.1.5 on CentOS 4.4</DIV>
<DIV><BR></DIV>Hi ;<BR><BR>I thank you much for your
help/input.<BR><BR>However, I am still seeing an error:<BR><BR>Here is the
output.<BR><BR>Thanks<BR><BR>FreeRADIUS Version 2.1.5, for host
i686-pc-linux-gnu, built on Apr 18 2009 at 05:17:11<BR>Copyright (C)
1999-2008 The FreeRADIUS server project and contributors.<BR>There is NO
warranty; not even for MERCHANTABILITY or FITNESS FOR A<BR>PARTICULAR
PURPOSE.<BR>You may redistribute copies of FreeRADIUS under the terms of
the<BR>GNU General Public License v2.<BR>Starting - reading configuration
files ...<BR>including configuration file /usr/local/etc/raddb/radiusd.
<DIV>conf<BR>including configuration file
/usr/local/etc/raddb/proxy.conf<BR>including configuration file
/usr/local/etc/raddb/clients.conf<BR>including files in directory
/usr/local/etc/raddb/modules/<BR>including configuration file
/usr/local/etc/raddb/modules/mac2vlan<BR>including configuration file
/usr/local/etc/raddb/modules/always<BR>including configuration file
/usr/local/etc/raddb/modules/exec<BR>including configuration file
/usr/local/etc/raddb/modules/expiration<BR>including configuration file
/usr/local/etc/raddb/modules/detail<BR>including configuration file
/usr/local/etc/raddb/modules/radutmp<BR>including configuration file
/usr/local/etc/raddb/modules/attr_rewrite<BR>including configuration file
/usr/local/etc/raddb/modules/realm<BR>including configuration file
/usr/local/etc/raddb/modules/expr<BR>including configuration file
/usr/local/etc/raddb/modules/ldap<BR>including configuration file
/usr/local/etc/raddb/modules/passwd<BR>including configuration file
/usr/local/etc/raddb/modules/otp<BR>including configuration file
/usr/local/etc/raddb/modules/etc_group<BR>including configuration file
/usr/local/etc/raddb/modules/acct_unique<BR>including configuration file
/usr/local/etc/raddb/modules/digest<BR>including configuration file
/usr/local/etc/raddb/modules/linelog<BR>including configuration file
/usr/local/etc/raddb/modules/smsotp<BR>including configuration file
/usr/local/etc/raddb/modules/detail.log<BR>including configuration file
/usr/local/etc/raddb/modules/mac2ip<BR>including configuration file
/usr/local/etc/raddb/modules/echo<BR>including configuration file
/usr/local/etc/raddb/modules/pap<BR>including configuration file
/usr/local/etc/raddb/modules/checkval<BR>including configuration file
/usr/local/etc/raddb/modules/wimax<BR>including configuration file
/usr/local/etc/raddb/modules/sql_log<BR>including configuration file
/usr/local/etc/raddb/modules/smbpasswd<BR>including configuration file
/usr/local/etc/raddb/modules/chap<BR>including configuration file
/usr/local/etc/raddb/modules/policy<BR>including configuration file
/usr/local/etc/raddb/modules/<A href="http://detail.example.com/"
target=_blank>detail.example.com</A><BR>including configuration file
/usr/local/etc/raddb/modules/preprocess<BR>including configuration file
/usr/local/etc/raddb/modules/pam<BR>including configuration file
/usr/local/etc/raddb/modules/attr_filter<BR>including configuration file
/usr/local/etc/raddb/modules/logintime<BR>including configuration file
/usr/local/etc/raddb/modules/inner-eap<BR>including configuration file
/usr/local/etc/raddb/modules/unix<BR>including configuration file
/usr/local/etc/raddb/modules/counter<BR>including configuration file
/usr/local/etc/raddb/modules/files<BR>including configuration file
/usr/local/etc/raddb/modules/mschap<BR>including configuration file
/usr/local/etc/raddb/modules/perl<BR>including configuration file
/usr/local/etc/raddb/modules/krb5<BR>including configuration file
/usr/local/etc/raddb/modules/sradutmp<BR>including configuration file
/usr/local/etc/raddb/modules/ippool<BR>including configuration file
/usr/local/etc/raddb/modules/sqlcounter_expire_on_login<BR>including
configuration file /usr/local/etc/raddb/eap.conf<BR>including
configuration file /usr/local/etc/raddb/policy.conf<BR>including files in
directory /usr/local/etc/raddb/sites-enabled/<BR>including configuration
file /usr/local/etc/raddb/sites-enabled/default<BR>including dictionary
file /usr/local/etc/raddb/dictionary<BR>main {<BR>
prefix = "/usr/local"<BR> localstatedir =
"/usr/local/var"<BR> logdir =
"/usr/local/var/log/radius"<BR> libdir =
"/usr/local/lib"<BR> radacctdir =
"/usr/local/var/log/radius/radacct"<BR>
hostname_lookups = no<BR> max_request_time
= 30<BR> cleanup_delay = 5<BR>
max_requests = 1024<BR>
allow_core_dumps = yes<BR> pidfile =
"/usr/local/var/run/radiusd/radiusd.pid"<BR>
checkrad = "/usr/local/sbin/checkrad"<BR>
debug_level = 0<BR> proxy_requests =
yes<BR> log {<BR> stripped_names =
no<BR> auth = no<BR>
auth_badpass = no<BR> auth_goodpass =
no<BR> }<BR> security {<BR>
max_attributes = 200<BR> reject_delay =
1<BR> status_server =
yes<BR> }<BR>}<BR>radiusd: #### Loading Realms and Home Servers
####<BR> proxy server {<BR> retry_delay =
5<BR> retry_count = 3<BR>
default_fallback = no<BR> dead_time =
120<BR> wake_all_if_all_dead =
no<BR> }<BR> home_server localhost {<BR>
ipaddr = 127.0.0.1<BR> port =
1812<BR> type = "auth"<BR>
secret = "testing123"<BR> response_window
= 20<BR> max_outstanding = 65536<BR>
require_message_authenticator = no<BR>
zombie_period = 40<BR> status_check
= "status-server"<BR> ping_interval =
30<BR> check_interval = 30<BR>
num_answers_to_alive = 3<BR>
num_pings_to_alive = 3<BR> revive_interval
= 120<BR> status_check_timeout = 4<BR>
irt = 2<BR> mrt =
16<BR> mrc = 5<BR> mrd
= 30<BR> }<BR> home_server_pool my_auth_failover {<BR>
type = fail-over<BR>
home_server = localhost<BR> }<BR> realm <A
href="http://example.com/" target=_blank>example.com</A> {<BR>
auth_pool = my_auth_failover<BR> }<BR> realm
LOCAL {<BR> }<BR>radiusd: #### Loading Clients ####<BR> client
localhost {<BR> ipaddr = 127.0.0.1<BR>
require_message_authenticator = no<BR>
secret = "testing123"<BR> nastype =
"other"<BR> }<BR>radiusd: #### Instantiating modules
####<BR> instantiate {<BR> Module: Linked to module
rlm_exec<BR> Module: Instantiating exec<BR> exec {<BR>
wait = no<BR> input_pairs =
"request"<BR> shell_escape =
yes<BR> }<BR> Module: Linked to module rlm_expr<BR> Module:
Instantiating expr<BR> Module: Linked to module
rlm_expiration<BR> Module: Instantiating
expiration<BR> expiration {<BR>
reply-message = "Password Has Expired
"<BR> }<BR> Module: Linked to module
rlm_logintime<BR> Module: Instantiating logintime<BR> logintime
{<BR> reply-message = "You are calling outside
your allowed timespan "<BR>
minimum-timeout = 60<BR> }<BR> }<BR>radiusd: #### Loading
Virtual Servers ####<BR> modules {<BR> Module: Checking
authenticate {...} for more modules to load<BR> Module: Linked to
module rlm_pap<BR> Module: Instantiating pap<BR> pap {<BR>
encryption_scheme = "auto"<BR>
auto_header = no<BR> }<BR> Module: Linked to module
rlm_chap<BR> Module: Instantiating chap<BR> Module: Linked to
module rlm_mschap<BR> Module: Instantiating mschap<BR> mschap
{<BR> use_mppe = yes<BR>
require_encryption = no<BR> require_strong
= no<BR> with_ntdomain_hack =
no<BR> }<BR> Module: Linked to module rlm_unix<BR> Module:
Instantiating unix<BR> unix {<BR> radwtmp =
"/usr/local/var/log/radius/radwtmp"<BR> }<BR> Module: Linked to
module rlm_eap<BR> Module: Instantiating eap<BR> eap {<BR>
default_eap_type = "md5"<BR>
timer_expire = 60<BR>
ignore_unknown_eap_types = no<BR>
cisco_accounting_username_bug = no<BR>
max_sessions = 2048<BR> }<BR> Module: Linked to sub-module
rlm_eap_md5<BR> Module: Instantiating eap-md5<BR> Module: Linked
to sub-module rlm_eap_leap<BR> Module: Instantiating
eap-leap<BR> Module: Linked to sub-module
rlm_eap_gtc<BR> Module: Instantiating eap-gtc<BR> gtc
{<BR> challenge = "Password: "<BR>
auth_type = "PAP"<BR> }<BR> Module: Linked to
sub-module rlm_eap_tls<BR> Module: Instantiating eap-tls<BR>
tls {<BR> rsa_key_exchange = no<BR>
dh_key_exchange = yes<BR>
rsa_key_length = 512<BR> dh_key_length =
512<BR> verify_depth = 0<BR>
pem_file_type = yes<BR> private_key_file =
"/usr/local/etc/raddb/certs/server.pem"<BR>
certificate_file = "/usr/local/etc/raddb/certs/server.pem"<BR>
CA_file =
"/usr/local/etc/raddb/certs/ca.pem"<BR>
private_key_password = "rifywbi!"<BR>
dh_file = "/usr/local/etc/raddb/certs/dh"<BR>
random_file = "/usr/local/etc/raddb/certs/random"<BR>
fragment_size = 1024<BR>
include_length = yes<BR> check_crl =
no<BR> cipher_list = "DEFAULT"<BR>
make_cert_command =
"/usr/local/etc/raddb/certs/bootstrap"<BR> cache {<BR>
enable = no<BR> lifetime =
24<BR> max_entries = 255<BR>
}<BR> }<BR>rlm_eap: SSL error error:0906D06C:PEM
routines:PEM_read_bio:no start line<BR>rlm_eap_tls: Error reading private
key file /usr/local/etc/raddb/certs/server.pem<BR>rlm_eap: Failed to
initialize type tls<BR>/usr/local/etc/raddb/eap.conf[17]: Instantiation
failed for module
"eap"<BR>/usr/local/etc/raddb/sites-enabled/default[280]: Failed to find
module "eap".<BR>/usr/local/etc/raddb/sites-enabled/default[227]: Errors
parsing authenticate section.<BR> }<BR>Errors initializing
modules</DIV><BR><BR><BR><BR>
<DIV class=gmail_quote>2009/4/18 Волошин Вячеслав <SPAN dir=ltr><<A
href="mailto:voloshin@maks.net"
target=_blank>voloshin@maks.net</A>></SPAN><BR>
<BLOCKQUOTE class=gmail_quote
style="PADDING-LEFT: 1ex; MARGIN: 0pt 0pt 0pt 0.8ex; BORDER-LEFT: rgb(204,204,204) 1px solid">
<DIV bgcolor="#ffffff">
<DIV><FONT face=Arial size=2><FONT face="Times New Roman" size=3>Delete
from '/usr/local/etc/raddb</FONT>/sites-enabled' all files, <FONT
size=3><FONT face="Times New Roman"><SPAN>except</SPAN>
'default'.</FONT></FONT></FONT></DIV>
<DIV> </DIV>
<DIV><FONT face=Arial size=2></FONT> </DIV>
<BLOCKQUOTE
style="PADDING-RIGHT: 0px; PADDING-LEFT: 5px; MARGIN-LEFT: 5px; BORDER-LEFT: rgb(0,0,0) 2px solid; MARGIN-RIGHT: 0px">
<DIV>
<DIV></DIV>
<DIV>
<DIV style="FONT: 10pt arial; font-size-adjust: none">----- Original
Message ----- </DIV>
<DIV
style="BACKGROUND: rgb(228,228,228); FONT: 10pt arial; font-size-adjust: none; -moz-background-clip: -moz-initial; -moz-background-origin: -moz-initial; -moz-background-inline-policy: -moz-initial"><B>From:</B>
<A title=glenmillard@gmail.com href="mailto:glenmillard@gmail.com"
target=_blank>Glen Millard</A> </DIV>
<DIV style="FONT: 10pt arial; font-size-adjust: none"><B>To:</B> <A
title=freeradius-users@lists.freeradius.org
href="mailto:freeradius-users@lists.freeradius.org"
target=_blank>freeradius-users@lists.freeradius.org</A> </DIV>
<DIV style="FONT: 10pt arial; font-size-adjust: none"><B>Sent:</B>
Saturday, April 18, 2009 6:00 PM</DIV>
<DIV style="FONT: 10pt arial; font-size-adjust: none"><B>Subject:</B>
FreeRADIUS 2.1.5 on CentOS 4.4</DIV>
<DIV><BR></DIV>Hello All;<BR><BR>I have been spinning my wheels on
this for a couple of days now.<BR><BR>I build FreeRADIUS from the
source , no errors, builds successfully.<BR><BR>However, when I launch
the FreeRADIUS server ( radiusd -X) this is what I see.<BR><BR>If I
use the 'fake' certs ( the test ones with the bootstrap script) , it
runs successfully.<BR><BR>Any ideas? I see discussion similar, but
nothing very
clear.<BR><BR>Anyone?<BR><BR>Thanks<BR>Glen<BR><BR>+++++++++++++++++++++++++++++++++++<BR><BR><BR>FreeRADIUS
Version 2.1.5, for host i686-pc-linux-gnu, built on Apr 18 2009 at
05:17:11<BR>Copyright (C) 1999-2008 The FreeRADIUS server project and
contributors.<BR>There is NO warranty; not even for MERCHANTABILITY or
FITNESS FOR A<BR>PARTICULAR PURPOSE.<BR>You may redistribute copies of
FreeRADIUS under the terms of the<BR>GNU General Public License
v2.<BR>Starting - reading configuration files ...<BR>including
configuration file /usr/local/etc/raddb/radiusd.
<DIV>conf<BR>including configuration file
/usr/local/etc/raddb/proxy.conf<BR>including configuration file
/usr/local/etc/raddb/clients.conf<BR>including files in directory
/usr/local/etc/raddb/modules/<BR>including configuration file
/usr/local/etc/raddb/modules/mac2vlan<BR>including configuration file
/usr/local/etc/raddb/modules/always<BR>including configuration file
/usr/local/etc/raddb/modules/exec<BR>including configuration file
/usr/local/etc/raddb/modules/expiration<BR>including configuration
file /usr/local/etc/raddb/modules/detail<BR>including configuration
file /usr/local/etc/raddb/modules/radutmp<BR>including configuration
file /usr/local/etc/raddb/modules/attr_rewrite<BR>including
configuration file /usr/local/etc/raddb/modules/realm<BR>including
configuration file /usr/local/etc/raddb/modules/expr<BR>including
configuration file /usr/local/etc/raddb/modules/ldap<BR>including
configuration file /usr/local/etc/raddb/modules/passwd<BR>including
configuration file /usr/local/etc/raddb/modules/otp<BR>including
configuration file /usr/local/etc/raddb/modules/etc_group<BR>including
configuration file
/usr/local/etc/raddb/modules/acct_unique<BR>including configuration
file /usr/local/etc/raddb/modules/digest<BR>including configuration
file /usr/local/etc/raddb/modules/linelog<BR>including configuration
file /usr/local/etc/raddb/modules/smsotp<BR>including configuration
file /usr/local/etc/raddb/modules/detail.log<BR>including
configuration file /usr/local/etc/raddb/modules/mac2ip<BR>including
configuration file /usr/local/etc/raddb/modules/echo<BR>including
configuration file /usr/local/etc/raddb/modules/pap<BR>including
configuration file /usr/local/etc/raddb/modules/checkval<BR>including
configuration file /usr/local/etc/raddb/modules/wimax<BR>including
configuration file /usr/local/etc/raddb/modules/sql_log<BR>including
configuration file /usr/local/etc/raddb/modules/smbpasswd<BR>including
configuration file /usr/local/etc/raddb/modules/chap<BR>including
configuration file /usr/local/etc/raddb/modules/policy<BR>including
configuration file /usr/local/etc/raddb/modules/<A
href="http://detail.example.com/"
target=_blank>detail.example.com</A><BR>including configuration file
/usr/local/etc/raddb/modules/preprocess<BR>including configuration
file /usr/local/etc/raddb/modules/pam<BR>including configuration file
/usr/local/etc/raddb/modules/attr_filter<BR>including configuration
file /usr/local/etc/raddb/modules/logintime<BR>including configuration
file /usr/local/etc/raddb/modules/inner-eap<BR>including configuration
file /usr/local/etc/raddb/modules/unix<BR>including configuration file
/usr/local/etc/raddb/modules/counter<BR>including configuration file
/usr/local/etc/raddb/modules/files<BR>including configuration file
/usr/local/etc/raddb/modules/mschap<BR>including configuration file
/usr/local/etc/raddb/modules/perl<BR>including configuration file
/usr/local/etc/raddb/modules/krb5<BR>including configuration file
/usr/local/etc/raddb/modules/sradutmp<BR>including configuration file
/usr/local/etc/raddb/modules/ippool<BR>including configuration file
/usr/local/etc/raddb/modules/sqlcounter_expire_on_login<BR>including
configuration file /usr/local/etc/raddb/eap.conf<BR>including
configuration file /usr/local/etc/raddb/policy.conf<BR>including files
in directory /usr/local/etc/raddb/sites-enabled/<BR>including
configuration file
/usr/local/etc/raddb/sites-enabled/default<BR>including configuration
file /usr/local/etc/raddb/sites-enabled/control-socket<BR>including
configuration file
/usr/local/etc/raddb/sites-enabled/inner-tunnel<BR>including
dictionary file /usr/local/etc/raddb/dictionary<BR>main {<BR>
prefix = "/usr/local"<BR>
localstatedir = "/usr/local/var"<BR>
logdir = "/usr/local/var/log/radius"<BR>
libdir = "/usr/local/lib"<BR>
radacctdir = "/usr/local/var/log/radius/radacct"<BR>
hostname_lookups = no<BR>
max_request_time = 30<BR>
cleanup_delay = 5<BR> max_requests =
1024<BR> allow_core_dumps = yes<BR>
pidfile =
"/usr/local/var/run/radiusd/radiusd.pid"<BR>
checkrad = "/usr/local/sbin/checkrad"<BR>
debug_level = 0<BR> proxy_requests =
yes<BR> log {<BR> stripped_names =
no<BR> auth = no<BR>
auth_badpass = no<BR> auth_goodpass =
no<BR> }<BR> security {<BR>
max_attributes = 200<BR> reject_delay
= 1<BR> status_server =
yes<BR> }<BR>}<BR>radiusd: #### Loading Realms and Home Servers
####<BR> proxy server {<BR> retry_delay
= 5<BR> retry_count = 3<BR>
default_fallback = no<BR>
dead_time = 120<BR>
wake_all_if_all_dead = no<BR> }<BR> home_server
localhost {<BR> ipaddr = 127.0.0.1<BR>
port = 1812<BR> type =
"auth"<BR> secret = "testing123"<BR>
response_window = 20<BR>
max_outstanding = 65536<BR>
require_message_authenticator = no<BR>
zombie_period = 40<BR> status_check =
"status-server"<BR> ping_interval =
30<BR> check_interval = 30<BR>
num_answers_to_alive = 3<BR>
num_pings_to_alive = 3<BR>
revive_interval = 120<BR>
status_check_timeout = 4<BR> irt =
2<BR> mrt = 16<BR>
mrc = 5<BR> mrd =
30<BR> }<BR> home_server_pool my_auth_failover {<BR>
type = fail-over<BR>
home_server = localhost<BR> }<BR> realm <A
href="http://example.com/" target=_blank>example.com</A> {<BR>
auth_pool =
my_auth_failover<BR> }<BR> realm LOCAL
{<BR> }<BR>radiusd: #### Loading Clients ####<BR> client
localhost {<BR> ipaddr = 127.0.0.1<BR>
require_message_authenticator = no<BR>
secret = "testing123"<BR>
nastype = "other"<BR> }<BR>radiusd: #### Instantiating
modules ####<BR> instantiate {<BR> Module: Linked to module
rlm_exec<BR> Module: Instantiating exec<BR> exec {<BR>
wait = no<BR>
input_pairs = "request"<BR>
shell_escape = yes<BR> }<BR> Module: Linked to module
rlm_expr<BR> Module: Instantiating expr<BR> Module: Linked
to module rlm_expiration<BR> Module: Instantiating
expiration<BR> expiration {<BR>
reply-message = "Password Has Expired
"<BR> }<BR> Module: Linked to module
rlm_logintime<BR> Module: Instantiating
logintime<BR> logintime {<BR>
reply-message = "You are calling outside your allowed timespan
"<BR> minimum-timeout =
60<BR> }<BR> }<BR>radiusd: #### Loading Virtual Servers
####<BR>server inner-tunnel {<BR> modules {<BR> Module:
Checking authenticate {...} for more modules to load<BR> Module:
Linked to module rlm_pap<BR> Module: Instantiating
pap<BR> pap {<BR> encryption_scheme =
"auto"<BR> auto_header =
no<BR> }<BR> Module: Linked to module
rlm_chap<BR> Module: Instantiating chap<BR> Module: Linked
to module rlm_mschap<BR> Module: Instantiating
mschap<BR> mschap {<BR> use_mppe =
yes<BR> require_encryption = no<BR>
require_strong = no<BR>
with_ntdomain_hack = no<BR> }<BR> Module: Linked to
module rlm_unix<BR> Module: Instantiating unix<BR> unix
{<BR> radwtmp =
"/usr/local/var/log/radius/radwtmp"<BR> }<BR> Module: Linked
to module rlm_eap<BR> Module: Instantiating eap<BR> eap
{<BR> default_eap_type = "md5"<BR>
timer_expire = 60<BR>
ignore_unknown_eap_types = no<BR>
cisco_accounting_username_bug = no<BR>
max_sessions = 2048<BR> }<BR> Module: Linked to
sub-module rlm_eap_md5<BR> Module: Instantiating
eap-md5<BR> Module: Linked to sub-module
rlm_eap_leap<BR> Module: Instantiating eap-leap<BR> Module:
Linked to sub-module rlm_eap_gtc<BR> Module: Instantiating
eap-gtc<BR> gtc {<BR> challenge =
"Password: "<BR> auth_type = "PAP"<BR>
}<BR> Module: Linked to sub-module rlm_eap_tls<BR> Module:
Instantiating eap-tls<BR> tls {<BR>
rsa_key_exchange = no<BR>
dh_key_exchange = yes<BR>
rsa_key_length = 512<BR> dh_key_length
= 512<BR> verify_depth = 0<BR>
pem_file_type = yes<BR>
private_key_file =
"/usr/local/etc/raddb/certs/server.pem"<BR>
certificate_file =
"/usr/local/etc/raddb/certs/server.pem"<BR>
CA_file = "/usr/local/etc/raddb/certs/ca.pem"<BR>
private_key_password = "rifywbi!"<BR>
dh_file = "/usr/local/etc/raddb/certs/dh"<BR>
random_file =
"/usr/local/etc/raddb/certs/random"<BR>
fragment_size = 1024<BR>
include_length = yes<BR> check_crl =
no<BR> cipher_list = "DEFAULT"<BR>
make_cert_command =
"/usr/local/etc/raddb/certs/bootstrap"<BR> cache
{<BR> enable = no<BR>
lifetime = 24<BR> max_entries =
255<BR> }<BR> }<BR>rlm_eap: SSL error
error:0906D06C:PEM routines:PEM_read_bio:no start line<BR>rlm_eap_tls:
Error reading private key file
/usr/local/etc/raddb/certs/server.pem<BR>rlm_eap: Failed to initialize
type tls<BR>/usr/local/etc/raddb/eap.conf[17]: Instantiation failed
for module
"eap"<BR>/usr/local/etc/raddb/sites-enabled/inner-tunnel[223]: Failed
to find module
"eap".<BR>/usr/local/etc/raddb/sites-enabled/inner-tunnel[176]: Errors
parsing authenticate section.<BR> }<BR>}<BR>Errors initializing
modules</DIV></DIV></DIV>
<P></P>
<HR>
<P></P>-<BR>List info/subscribe/unsubscribe? See <A
href="http://www.freeradius.org/list/users.html"
target=_blank>http://www.freeradius.org/list/users.html</A></BLOCKQUOTE></DIV><BR>-<BR>List
info/subscribe/unsubscribe? See <A
href="http://www.freeradius.org/list/users.html"
target=_blank>http://www.freeradius.org/list/users.html</A><BR></BLOCKQUOTE></DIV><BR>
<P></P>
<HR>
<P></P>-<BR>List info/subscribe/unsubscribe? See <A
href="http://www.freeradius.org/list/users.html"
target=_blank>http://www.freeradius.org/list/users.html</A></DIV></DIV></BLOCKQUOTE></DIV><BR>-<BR>List
info/subscribe/unsubscribe? See <A
href="http://www.freeradius.org/list/users.html"
target=_blank>http://www.freeradius.org/list/users.html</A><BR></BLOCKQUOTE></DIV><BR>
<P>
<HR>
<P></P>-<BR>List info/subscribe/unsubscribe? See
http://www.freeradius.org/list/users.html</BLOCKQUOTE></BODY></HTML>