EAP
romero.cl at gmail.com
romero.cl at gmail.com
Wed Dec 6 03:06:40 CET 2006
Hi.
The problem was that the password of the certificate and the password of
eap.conf doesn't match.
Layer 8 problem, between the chair and the keyboard...
----- Original Message -----
From: "rolando" <rolando.david at adelphia.net>
To: "FreeRadius users mailing list" <freeradius-users at lists.freeradius.org>
Sent: Tuesday, December 05, 2006 10:01 PM
Subject: Re: EAP
> Check out you file permissions.
>
> chmod 600 /path/to/certs
>
> Can you post you raduisd.conf, users, eap.conf. I would like to use them
> as a reference. I am trying to setup PEAP myself. I have several windows
> machines setup but am having trouble with linux and wpa_supplicant.
>
> Daniel Romero wrote:
> > Any ideas?
> >
> > ...
> > Module: Loaded eap
> > eap: default_eap_type = "peap"
> > eap: timer_expire = 60
> > eap: ignore_unknown_eap_types = no
> > eap: cisco_accounting_username_bug = no
> > tls: rsa_key_exchange = no
> > tls: dh_key_exchange = yes
> > tls: rsa_key_length = 512
> > tls: dh_key_length = 512
> > tls: verify_depth = 0
> > tls: CA_path = "(null)"
> > tls: pem_file_type = yes
> > tls: private_key_file = "/usr/local/etc/raddb/certs/cert- srv.pem"
> > tls: certificate_file = "/usr/local/etc/raddb/certs/cert-srv.pem"
> > tls: CA_file = "/usr/local/etc/raddb/certs/demoCA/cacert.pem"
> > tls: private_key_password = "radiusUDP"
> > tls: dh_file = "/usr/local/etc/raddb/certs/dh"
> > tls: random_file = "/usr/local/etc/raddb/certs/random"
> > tls: fragment_size = 1024
> > tls: include_length = yes
> > tls: check_crl = no
> > tls: check_cert_cn = "(null)"
> > tls: cipher_list = "(null)"
> > tls: check_cert_issuer = "(null)"
> > rlm_eap_tls: Loading the certificate file as a chain
> > rlm_eap: SSL error error:0906D06C:PEM routines:PEM_read_bio:no start
line
> > rlm_eap_tls: Error reading private key file
> > rlm_eap: Failed to initialize type tls
> > radiusd.conf[1]: eap: Module instantiation failed.
> > radiusd.conf[399] Unknown module "eap".
> > radiusd.conf[382] Failed to parse authenticate section.
> >
> > ------------------------------------------------------------------------
> >
> > -
> > List info/subscribe/unsubscribe? See
http://www.freeradius.org/list/users.html
> -
> List info/subscribe/unsubscribe? See
http://www.freeradius.org/list/users.html
More information about the Freeradius-Users
mailing list