Version 3.0.4 Centos 7 EAP-TLS : EAP failure

Alan DeKok aland at deployingradius.com
Sun Feb 7 04:53:06 CET 2016


On Feb 6, 2016, at 9:22 PM, John Teasley <ollieteasley at gmail.com> wrote:
> Thanks for the reply Alan! Made all the changes you indicated. However, I
> am still having issues. Also, is it required to run a proxy if I only use
> the radius host? This is just for a small home lab. Please see below
> results. I really appreciate the help.

  It's what I do, despite what some people think. :)

> Also, while I can build from source,
> would doing so fix this? It seems more like something I have done wrong. A
> rebuild would just reflect the same misconfigurations if that is what the
> issue is.

  Again, a careful reading of the output is useful:

  From eapol_test:

> OpenSSL: tls_connection_ca_cert - Failed to load root certificates
> error:02001002:system library:fopen:No such file or directory
> OpenSSL: pending error: error:2006D080:BIO routines:BIO_new_file:no such
> file
> OpenSSL: pending error: error:0B084002:x509 certificate
> routines:X509_load_cert_crl_file:system lib
> OpenSSL: tls_load_ca_der - Failed load CA in DER format
> error:02001002:system library:fopen:No such file or directory
> OpenSSL: pending error: error:20074002:BIO routines:FILE_CTRL:system lib

  You need to be sure that the certificate exists.  Check the path in the eapol_test configuration file.

  Alan DeKok.




More information about the Freeradius-Users mailing list