FreeRadius Certificate Problem
Bryant Marsh
bryantmarsh at cookielee.com
Tue Jun 26 23:21:43 CEST 2007
To Dead6re,
I fixed it by copying the serial file again from the scripts directory
immediately after the root certificate was created, but before the client
certificate.
The first thing the CA.all does is remove all files from the demoCA
directory including the serial file.
Hope this helps.
Dead6re wrote:
>
> Hello all,
>
> Iam havea huge problem using CA.all to generate the certificates needed
> for FreeRadius. I am currently using Fedora and my OpenSSL version is:
> 0.9.8b and has recently been updated.
>
> Using configuration from /usr/local/ssl/openssl.cnf
> ./demoCA/serial: No such file or directory
> error while loading serial number
> 17811:error:02001002:system library:fopen:No such file or
> directory:bss_file.c:352:fopen('./demoCA/serial','r')
> 17811:error:20074002:BIO routines:FILE_CTRL:system lib:bss_file.c:354:
> + openssl pkcs12 -export -in newcert.pem -inkey newreq.pem -out
> cert-srv.p12 -clcerts -passin pass:<my pass> -passout pass:<my pass>
> No certificate matches private key
> + openssl pkcs12 -in cert-srv.p12 -out cert-srv.pem -passin pass:<my pass>
> -passout pass:<my pass>
> 17813:error:0D07207B:asn1 encoding routines:ASN1_get_object:header too
> long:asn1_lib.c:150:
> + openssl x509 -inform PEM -outform DER -in cert-srv.pem -out cert-srv.der
> unable to load certificate
> 17814:error:0906D06C:PEM routines:PEM_read_bio:no start
> line:pem_lib.c:647:Expecting: TRUSTED CERTIFICATE
>
> How do I fix this error?
>
> Thanks, Dead6re
>
>
--
View this message in context: http://www.nabble.com/FreeRadius-Certificate-Problem-tf3981133.html#a11314170
Sent from the FreeRadius - User mailing list archive at Nabble.com.
More information about the Freeradius-Users
mailing list