MS-CHAP cannot login
Steven Carr
steven.carr at sunderland.ac.uk
Thu Aug 13 09:00:22 CEST 2009
On 13/8/09 06:07, Sanhenra Sinaga wrote:
> [eap] Request found, released from the list
> [eap] EAP/peap
> [eap] processing type peap
> [peap] processing EAP-TLS
> [peap] eaptls_verify returned 7
> [peap] Done initial handshake
> [peap] <<< TLS 1.0 Alert [length 0002], fatal bad_certificate
> TLS Alert read:fatal:bad certificate
> TLS_accept:failed in SSLv3 read client certificate A
> rlm_eap: SSL error error:14094412:SSL routines:SSL3_READ_BYTES:sslv3 alert bad certificate
> SSL: SSL_read failed inside of TLS (-1), TLS session fails.
> TLS receive handshake failed during operation
> [peap] eaptls_process returned 4
> [peap] EAPTLS_OTHERS
> [eap] Handler failed in EAP/peap
> [eap] Failed in EAP select
> ++[eap] returns invalid
> Failed to authenticate the user.
The SSL/TLS handshake failed. Did the client reject the certificate? if
it's a Windows box and you are using a self-signed cert you will either
need to add the CA cert to the Trusted Root Certificates or configure
the Wireless connection not to validate the server certificates.
Steve
--
Steven Carr
Systems Development Officer
SLS/ITS/Systems - (0191) 515 3953
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 258 bytes
Desc: OpenPGP digital signature
URL: <http://lists.freeradius.org/pipermail/freeradius-users/attachments/20090813/3ca0c73d/attachment.pgp>
More information about the Freeradius-Users
mailing list