On Jul 15, 2015, at 4:43 AM, Till Dörges <doerges@pre-sense.de> wrote:
[Not sure where to report this. So please advise, if there's a more suitable place.]
Dear all,
When upgrading our running freeradius-2.2 configuration for EAP-TTLS to freeradius-3.0 we followed the guide from http://freeradius.org/version3.html and almost everything was running in our test environment except one point already discussed similarly:
http://lists.freeradius.org/pipermail/freeradius-users/2015-March/076365.htm...
That's an SSL issue. Use 3.0.9, and it should work.
In order to make it work, we patched freeradius-3 like this (also see attachments tls.c.patch and tls.c.original):
A better solution is to upgrade. This patch just papers over the issue, it doesn't fix it. Alan DeKok.