GOT error read client CA in eap-tls

freeradius at zoftdev.com freeradius at zoftdev.com
Sat Aug 13 00:08:49 CEST 2005


Hi all

I config freeradius follow this document

http://www.alphacore.net/spipen/article.php3?id_article=1

but I got error below

rad_recv: Access-Request packet from host 192.168.101.29:1239, id=62,
length=230
        User-Name = "mobile"
        NAS-IP-Address = 192.168.101.29
        NAS-Port = 0
        Called-Station-Id = "00-80-C8-AC-A3-80"
        Calling-Station-Id = "00-04-23-52-E4-10"
        NAS-Identifier = "jameslong5 On Center"
        Framed-MTU = 1380
        NAS-Port-Type = Wireless-802.11
        EAP-Message =
0x020400500d800000004616030100410100003d030142fd1e5eebf3eb7698937e226b8350843678f15002dc309a1934beb1c6f56e1d00001600040005000a000900640062000300060013001200630100
        State = 0x9b6a342a9b2b46b0fd473df927bba128
        Message-Authenticator = 0xc68c53d418a3f44053680ba65b37dfbf
  Processing the authorize section of radiusd.conf
modcall: entering group authorize for request 2
  modcall[authorize]: module "preprocess" returns ok for request 2
  modcall[authorize]: module "mschap" returns noop for request 2
    rlm_realm: No '@' in User-Name = "mobile", looking up realm NULL
    rlm_realm: No such realm "NULL"
  modcall[authorize]: module "suffix" returns noop for request 2
  rlm_eap: EAP packet type response id 4 length 80
  rlm_eap: No EAP Start, assuming it's an on-going EAP conversation
  modcall[authorize]: module "eap" returns updated for request 2
    users: Matched entry DEFAULT at line 152
    users: Matched entry mobile at line 219
  modcall[authorize]: module "files" returns ok for request 2
modcall: group authorize returns updated for request 2
  rad_check_password:  Found Auth-Type EAP
auth: type "EAP"
  Processing the authenticate section of radiusd.conf
modcall: entering group authenticate for request 2
  rlm_eap: Request found, released from the list
  rlm_eap: EAP/tls
  rlm_eap: processing type tls
  rlm_eap_tls: Authenticate
  rlm_eap_tls: processing TLS
rlm_eap_tls:  Length Included
  eaptls_verify returned 11
    (other): before/accept initialization
    TLS_accept: before/accept initialization
  rlm_eap_tls: <<< TLS 1.0 Handshake [length 0041], ClientHello
    TLS_accept: SSLv3 read client hello A
  rlm_eap_tls: >>> TLS 1.0 Handshake [length 004a], ServerHello
    TLS_accept: SSLv3 write server hello A
  rlm_eap_tls: >>> TLS 1.0 Handshake [length 06bf], Certificate
    TLS_accept: SSLv3 write certificate A
  rlm_eap_tls: >>> TLS 1.0 Handshake [length 00b2], CertificateRequest
    TLS_accept: SSLv3 write certificate request A
    TLS_accept: SSLv3 flush data
    TLS_accept:error in SSLv3 read client certificate A
In SSL Handshake Phase
In SSL Accept mode

Thanks you.




More information about the Freeradius-Users mailing list