Hi,<div> I have freeradius server ( ver. 2.1.10 ) compiled with openssl-0.9.8l. Now by method given in raddb/certs I created the certificates on a machine having OpenSSL 1.0.0e.</div><div><br></div><div>After loading ca.pem,server.pem & private.pem ( which is copy of server.pem ) certificates under raddb/certs and then starting the radius server I got this error just after eap module. Is this due to different openssl versions?</div>
<div><br></div><div><div>Module: Linked to module rlm_eap</div><div> Module: Instantiating module "eap" from file /etc/raddb/eap.conf</div><div> eap {</div><div> default_eap_type = "md5"</div><div>
timer_expire = 60</div><div> ignore_unknown_eap_types = no</div><div> cisco_accounting_username_bug = no</div><div> max_sessions = 4096</div><div> }</div><div> Module: Linked to sub-module rlm_eap_md5</div>
<div> Module: Instantiating eap-md5</div><div> Module: Linked to sub-module rlm_eap_leap</div><div> Module: Instantiating eap-leap</div><div> Module: Linked to sub-module rlm_eap_gtc</div><div> Module: Instantiating eap-gtc</div>
<div> gtc {</div><div> challenge = "Password: "</div><div> auth_type = "PAP"</div><div> }</div><div> Module: Linked to sub-module rlm_eap_tls</div><div> Module: Instantiating eap-tls</div>
<div> tls {</div><div> rsa_key_exchange = no</div><div> dh_key_exchange = yes</div><div> rsa_key_length = 512</div><div> dh_key_length = 512</div><div> verify_depth = 0</div><div> CA_path = "/etc/raddb/certs"</div>
<div> pem_file_type = yes</div><div> private_key_file = "/etc/raddb/certs/private.pem"</div><div> certificate_file = "/etc/raddb/certs/server.pem"</div><div> CA_file = "/etc/raddb/certs/ca.pem"</div>
<div> private_key_password = "whatever"</div><div> dh_file = "/etc/raddb/certs/dh"</div><div> random_file = "/etc/raddb/certs/random"</div><div> fragment_size = 1024</div>
<div> include_length = yes</div><div> check_crl = no</div><div> cipher_list = "DEFAULT"</div><div> make_cert_command = "/etc/raddb/certs/bootstrap"</div><div> cache {</div>
<div> enable = no</div><div> lifetime = 24</div><div> max_entries = 255</div><div> }</div><div> verify {</div><div> }</div><div> }</div><div>rlm_eap: SSL error error:06074079:digital envelope routines:EVP_PBE_CipherInit:unknown pbe algorithm</div>
<div>rlm_eap_tls: Error reading private key file /etc/raddb/certs/private.pem</div><div>rlm_eap: Failed to initialize type tls</div><div>/etc/raddb/eap.conf[17]: Instantiation failed for module "eap"</div><div>/etc/raddb/sites-enabled/inner-tunnel[236]: Failed to load module "eap".</div>
<div>/etc/raddb/sites-enabled/inner-tunnel[189]: Errors parsing authenticate section.</div></div><div><br></div><div><br></div><div>Thanks & Regards,</div><div>Prateek</div>