windows7 machine authentication
Alan DeKok
aland at deployingradius.com
Tue Aug 24 16:30:16 CEST 2010
alois blasbichler wrote:
> Now i wanted to authenticate a Windows 7 laptop and i get the following
> errors :
...
> [peap] <<< TLS 1.0 Alert [length 0002], fatal unknown_ca
> TLS Alert read:fatal:unknown CA
> TLS_accept:failed in SSLv3 read client certificate A
> rlm_eap: SSL error error:14094418:SSL routines:SSL3_READ_BYTES:tlsv1
> alert unknown ca
> SSL: SSL_read failed inside of TLS (-1), TLS session fails.
The laptop MUST have the CA certificate on it.
http://deployingradius.com/documents/configuration/ca_import.html
> I dont use certificates neither on the server
Nonsense. EAP-TLS and PEAP require a server certificate.
> and neither on the client
> side.
Which is why it's failing.
> I read in teh internet that also windows7 should work without
> certificates - is that true ?
No.
Alan DeKok.
More information about the Freeradius-Users
mailing list