FreeRadius Certificate Problem
Dead6re
dead6re at gmail.com
Wed Jun 27 11:34:43 CEST 2007
Wow thanks, I wish I had thought of remaking the serial file after the root
certificate was made.
Bryant Marsh wrote:
>
> To Dead6re,
>
> I fixed it by copying the serial file again from the scripts directory
> immediately after the root certificate was created, but before the client
> certificate.
>
> The first thing the CA.all does is remove all files from the demoCA
> directory including the serial file.
>
> Hope this helps.
>
>
> Dead6re wrote:
>>
>> Hello all,
>>
>> Iam havea huge problem using CA.all to generate the certificates needed
>> for FreeRadius. I am currently using Fedora and my OpenSSL version is:
>> 0.9.8b and has recently been updated.
>>
>> Using configuration from /usr/local/ssl/openssl.cnf
>> ./demoCA/serial: No such file or directory
>> error while loading serial number
>> 17811:error:02001002:system library:fopen:No such file or
>> directory:bss_file.c:352:fopen('./demoCA/serial','r')
>> 17811:error:20074002:BIO routines:FILE_CTRL:system lib:bss_file.c:354:
>> + openssl pkcs12 -export -in newcert.pem -inkey newreq.pem -out
>> cert-srv.p12 -clcerts -passin pass:<my pass> -passout pass:<my pass>
>> No certificate matches private key
>> + openssl pkcs12 -in cert-srv.p12 -out cert-srv.pem -passin pass:<my
>> pass> -passout pass:<my pass>
>> 17813:error:0D07207B:asn1 encoding routines:ASN1_get_object:header too
>> long:asn1_lib.c:150:
>> + openssl x509 -inform PEM -outform DER -in cert-srv.pem -out
>> cert-srv.der
>> unable to load certificate
>> 17814:error:0906D06C:PEM routines:PEM_read_bio:no start
>> line:pem_lib.c:647:Expecting: TRUSTED CERTIFICATE
>>
>> How do I fix this error?
>>
>> Thanks, Dead6re
>>
>>
>
>
--
View this message in context: http://www.nabble.com/FreeRadius-Certificate-Problem-tf3981133.html#a11321257
Sent from the FreeRadius - User mailing list archive at Nabble.com.
More information about the Freeradius-Users
mailing list