17 Apr
2020
17 Apr
'20
6:04 a.m.
hi, IIRC that message only comes from the OCSP part of FreeRADIUS EAP-TLS - and it whilst it suggests that the issuer of the EAP-TLS cert that the client is using could not be found in your chain it might really be some Ubuntu/Debian OpenSSL thing - changes to acceptable crypto etc. might be that which is causing the upset. I guess this error is only seen when you are firing off tests from that one client and you havent got an other/older copy been fired off from some monitor platform? (a platform which might have TLS1.1 or higher issues) ? alan