Problem configuration eap-tls

listas mailistas at gmail.com
Fri Sep 22 15:27:22 CEST 2006 

> all of these files mentioned exist and are readable by the radiusd process?

Yes, all of them have "chmod 777" just in case. The contents of server_keycert.pem and cacert.pem is the following:

server_keycert.pem:

-----BEGIN RSA PRIVATE KEY-----
Proc-Type: 4,ENCRYPTED
DEK-Info: DES-EDE3-CBC,****************

****************************************************************
****************************************************************
****************************************************************
****************************************************************
****************************************************************
-----END RSA PRIVATE KEY-----
-----BEGIN CERTIFICATE-----
****************************************************************
****************************************************************
****************************************************************
****************************************************************
****************************************************************
-----END CERTIFICATE-----

cacert.pem:

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 0 (0x0)
        Signature Algorithm: sha1WithRSAEncryption
        Issuer: *
        Validity
            Not Before: Sep 19 22:17:43 2006 GMT
            Not After : Sep 18 22:17:43 2009 GMT
        Subject: *
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
            RSA Public Key: (2048 bit)
                Modulus (2048 bit):
                    *
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Basic Constraints:
                CA:FALSE
            Netscape Comment:
                OpenSSL Generated Certificate
            X509v3 Subject Key Identifier:
                *
            X509v3 Authority Key Identifier:
                *

    Signature Algorithm: sha1WithRSAEncryption
        *
-----BEGIN CERTIFICATE-----
****************************************************************
****************************************************************
****************************************************************
****************************************************************
****************************************************************
-----END CERTIFICATE-----

More information about the Freeradius-Users mailing list