SSL error after updating cert

James J J Hooper jjj.hooper at bristol.ac.uk
Fri Oct 21 21:56:33 CEST 2011


On 21/10/2011 20:44, Eric Geier wrote:
> Hi, I’m trying to update my server’s cert, but getting errors
> after applying it:
>
> Fri Oct 21 12:26:45 2011 : Error: TLS Alert read:fatal:certificate
> expired
> Fri Oct 21 12:26:45 2011 : Error:     TLS_accept:failed in SSLv3
> read client certificate A
> Fri Oct 21 12:26:45 2011 : Error: rlm_eap: SSL error
> error:14094415:SSL routines:SSL3_READ_BYTES:sslv3 alert
> certificate expired
> Fri Oct 21 12:26:45 2011 : Error: rlm_eap_tls: SSL_read failed
> inside of TLS (-1), TLS session fails.
>
> Says expired but I’m using the new cert, which is a renewal from a
> third-party CA and using the same private key. I apply it by
> inserting the text of the .crt file into the server-cert.pem file
> in the certs folder. I think that’s all I have to do and restart
> freeradius?
>

1) Check the date on the client system is correct

2) do:
openssl -in /path/to/your/raddb/server-cert.pem -noout -text
and verify the properties of the cert you have.

-James



More information about the Freeradius-Users mailing list