Radius says client is unknown.

M. Onur ERGiN monurergin at yahoo.com
Tue Feb 27 21:13:55 CET 2007

I used CA.all script to create certificates and ran it as root. I also run radiusd as root. 

What do the error codes mean? (....6490:error....)

Oh, by the way, may be this is a little off-topic but can I authenticate windows xp users through peap without using a certificate?


Kevin Bonner <keb at pa.net> wrote: On Tuesday 27 February 2007 14:47, M. Onur ERGiN wrote:
> Just a moment ago, I noticed that I can't start radiusd daemon with
> 'service radiusd start' command. It gives the following error:
> [root at moe raddb]# service radiusd start
> Starting RADIUS server: Tue Feb 27 21:44:38 2007 : Info: Starting - reading
> configuration files ... 6490:error:0906D06C:PEM routines:PEM_read_bio:no
> start line:pem_lib.c:632:Expecting: CERTIFICATE 6490:error:0906D06C:PEM
> routines:PEM_read_bio:no start line:pem_lib.c:632:Expecting: CERTIFICATE
> 6490:error:140AD009:SSL routines:SSL_CTX_use_certificate_file:PEM
> lib:ssl_rsa.c:534: [FAILED]
> But I can start it with 'radiusd -X'
> Can the prooblem be related to that? By the way, I have signed a new
> certificate to be used in radius. But it seems okay.
> Thanks for any help,
> Onur.

Sounds like a permissions issue to me.  Check the user/group that is 
configured in radiusd.conf, then verify that the user can read the 
certificates and config files.

Kevin Bonner
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

TV dinner still cooling?
Check out "Tonight's Picks" on Yahoo! TV.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.freeradius.org/pipermail/freeradius-users/attachments/20070227/796a3e10/attachment.html>

More information about the Freeradius-Users mailing list