password failover

Norbert Wegener norbert.wegener at siemens.com
Thu Feb 7 09:54:02 CET 2008


Alan DeKok schrieb:
> Norbert Wegener wrote:
>   
>> your answer lets me assume, the problem is with my configuration :-(
>> The output is at http : //www.wegener-net.de/freeradius/typescript
>>     
>
> Wed Feb  6 18:02:23 2008 : Debug:   rlm_eap_tls: >>> TLS 1.0 Alert
> [length 0002], fatal certificate_expired
> Wed Feb  6 18:02:23 2008 : Error: TLS Alert write:fatal:certificate expired
>
>   Expired certificates can't be used for authentication.  Editing
> radiusd.conf won't fix this. :)
>   
Accepted.

But it would be helpful for a service desk to know that an expired 
certificate was the reason to refuse access.
My intention was to provide this information in radpostauth.
It seems, this cannot be achived the way I tried. Is there another way 
to go for this?

Norbert Wegener

>   Alan DeKok.
> -
> List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
>   




More information about the Freeradius-Users mailing list