Yes but only for computer which are registered to the samba domains. For other ones there's no problem Le 10.04.2018 à 10:36, Arran Cudbard-Bell a écrit :
On Apr 10, 2018, at 2:34 PM, Arnaud Forster <arnaud.forster@mwprog.ch> wrote:
Hello Alan,
Thanks for your answer. So I checked the log and the only thing I've when a computer belonging to the domain tries to connect is the following :
Tue Apr 10 10:31:14 2018 : Info: rlm_ldap (ldap): Opening additional connection (24), 1 of 29 pending slots used Tue Apr 10 10:31:15 2018 : ERROR: (37) eap_peap: ERROR: TLS Alert read:fatal:unknown CA Tue Apr 10 10:31:15 2018 : ERROR: (37) eap_peap: ERROR: TLS_accept: Failed in SSLv3 read client key exchange A Tue Apr 10 10:31:15 2018 : ERROR: (37) eap_peap: ERROR: Failed in __FUNCTION__ (SSL_read)
So I tried to install the ca.der key on the windows client system but the error remains Client doesn't know/trust the CA that signed your server certificate.
-Arran
- List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html