Failure with "TLS authentication" and "Freeradius on Fefora-17"

Phil Mayers p.mayers at
Wed Jan 9 12:25:16 CET 2013

On 01/09/2013 06:15 AM, Ajay Garg wrote:

> However, I get the exact same earlier dreaded logs :(

Sigh. This really is the thread of doom.

Find a working CA/server cert (from another machine, generated with the 
same steps) and your failing ones.

Then compare the output of:

openssl x509 -noout -text -in ca.pem
openssl x509 -noout -text -in server.pem

If the certs differ substantially (applying common sense to fields that 
must differ, like key hashes, dates, serial numbers, etc.) then there 
might be an issue with cert generation.

If no, you're doing something wrong - much more likely IMO.

More information about the Freeradius-Users mailing list