What about this part of the error: "TLS Alert read:fatal:access denied TLS_accept: failed in SSLv3 read client certificate A rlm_eap: SSL error error:14094419:SSL routines:SSL3_READ_BYTES:tlsv1 alert access denied SSL: SSL_read failed inside of TLS (-1), TLS session fails. TLS receive handshake failed during operation" ? This is not cosmetic for sure :) Dnia 20 maja 2015 16:28 Arran Cudbard-Bell <a.cudbardb@freeradius.org> napisaĆ(a):
On 20 May 2015, at 10:02, Alan DeKok <aland@deployingradius.com> wrote:
On May 20, 2015, at 9:50 AM, gabriel_skupien <gabriel_skupien@o2.pl>> wrote:
Problem with TTLS setup. EAP clients negotiate TLSv1.2 but FR reports> "Unknown TLS version". Any idea? It's a TLS issue. Either OpenSSL doesn't understand TLSv1.2, or> FreeRADIUS was built using the wrong version of OpenSSL.I'm fairly sure this was a cosmetic issue that was fixed recently when we> were looking at tls 1.2 and wpa_supplicant.
OP will likely find it works as expected in v3.0.8, can't remember if it> was backported to v2.2.x.
If it wasn't, I vote nofix because v2.2.x is EOL and OP should upgrade to> v3.0.8.
-Arran
Arran Cudbard-Bell <a.cudbardb@freeradius.org>
FreeRADIUS development team
FD31 3077 42EC 7FCD 32FE 5EE2 56CF 27F9 30A8 CAA2
-> List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html