Anyone got a working sites-available/tls file for FR 4.0- ?

Alan DeKok aland at
Fri Dec 2 17:56:29 CET 2016

On Dec 2, 2016, at 11:31 AM, Alex Sharaz <alex.sharaz at> wrote:
> Spoke too soon
> Unpacked and built FR 4.0 from git

  We're in the process re-working 4.0.  So I'm hesitant to look at any issues with it.

> Error : /etc/freeradius/sites-enabled/tls[7]: Listeners of type
> 'auth+acct' MUST be defined in a server.

  That can be fixed, I guess.

> Edited  tls to add server tls {....}\

  Please don't.  I've already said that's wrong.

  If the error message says that the "listen" section belongs in a "server" block... then put the "listen" section into a "server" block.  Don't put the entire "tls" file into a "server" block.

> Fri Dec  2 16:22:46 2016 : Error : /etc/freeradius/sites-enabled/tls[8]:
> Failed to find clients radsec {...}\

  See the other example virtual servers for how to set a "clients" section.

  You can't put a "clients" section into a virtual server like that.

> I know you said I didn't need the server blockbut without it can't even get
> as far as I did with the standard raddb configs

  Honestly, all of this will change in a few months as we re-do version 4.  There is just no reason for anyone to run v4 until January or so.

  Alan DeKok.

More information about the Freeradius-Users mailing list