I'm a newbie, and I'm trying to configure a simple EAP-TLS autententication by using client certificates. I have follow different procedures that I have found on the web to do that, but no successful currently
http://wiki.freeradius.org/WPA_HOWTO#HOWTO_Do_It:_An_Outline
- 2nd... What is wrong in my configuration? I can not distinguish, at the moment, which is the entry at logs that I should focus.
[tls] <<< TLS 1.0 Handshake [length 036f], Certificate --> verify error:num=20:unable to get local issuer certificate [tls] >>> TLS 1.0 Alert [length 0002], fatal unknown_ca TLS Alert write:fatal:unknown CA
If you had followed the howto guide and done: In the list of trusted root CAs, check only the CA that corresponds to the certificate you have generated error wouldn't happen. You most likely haven't imported you self-signed root CA onto the client. Ivan Kalik