need help - force EAP-TTLS to validate the server certificate

Alan DeKok aland at
Tue Sep 21 09:33:29 CEST 2010

Klaus Laus wrote:
> I tried to login from another client, but it´s the same problem.
> TLS Alert write:fatal:handshake failure
> TLS_accept:error in SSLv3 read client certificate B
> rlm_eap: SSL error error:140890C7:SSL
> routines:SSL3_GET_CLIENT_CERTIFICATE:peer did not return a certificate
> SSL: SSL_read failed in a system call (-1), TLS session fails.

  That message should be clear.  The supplicant didn't send a client

  Did you create a client certificate?

  If so, did you copy it to the client?

  Alan DeKok.

More information about the Freeradius-Users mailing list