NSS DB

Andrew Meyer andrewm659 at yahoo.com
Fri Jul 12 17:30:01 CEST 2019


Hello,I am having some trouble getting FreeRADIUS to work.  I am trying to set it up to communicate with my LDAP system (FreeIPA).  I am using CentOS 7 latest w/ FreeRADIUS 3.0.13 and receiving the following errors.
 [root at console02 nssdb]# sudo systemctl status radiusd -l
● radiusd.service - FreeRADIUS high performance RADIUS server.
   Loaded: loaded (/usr/lib/systemd/system/radiusd.service; enabled; vendor preset: disabled)
   Active: failed (Result: exit-code) since Fri 2019-07-12 15:11:52 UTC; 11min ago
  Process: 4068 ExecStart=/usr/sbin/radiusd -d /etc/raddb (code=exited, status=1/FAILURE)
  Process: 4063 ExecStartPre=/usr/sbin/radiusd -C (code=exited, status=0/SUCCESS)
  Process: 4060 ExecStartPre=/bin/chown -R radiusd.radiusd /var/run/radiusd (code=exited, status=0/SUCCESS)
 Main PID: 1079 (code=exited, status=0/SUCCESS)

Jul 12 15:11:51 console02.loc.example.local systemd[1]: Starting FreeRADIUS high performance RADIUS server....
Jul 12 15:11:52 console02.loc.example.local radiusd[4068]: TLSMC: MozNSS compatibility interception begins.
Jul 12 15:11:52 console02.loc.example.local radiusd[4068]: tlsmc_convert: INFO: cannot open the NSS DB, expecting PEM configuration is present.
Jul 12 15:11:52 console02.loc.example.local radiusd[4068]: tlsmc_intercept_initialization: INFO: successfully intercepted TLS initialization. Continuing with OpenSSL only.
Jul 12 15:11:52 console02.loc.example.local radiusd[4068]: TLSMC: MozNSS compatibility interception ends.
Jul 12 15:11:52 console02.loc.example.local systemd[1]: radiusd.service: control process exited, code=exited status=1
Jul 12 15:11:52 console02.loc.example.local systemd[1]: Failed to start FreeRADIUS high performance RADIUS server..
Jul 12 15:11:52 console02.loc.example.local systemd[1]: Unit radiusd.service entered failed state.
Jul 12 15:11:52 console02.loc.example.local systemd[1]: radiusd.service failed.
[root at console02 nssdb]# 


I have been doing some research and found that there is an issue w/ Redhat/CentOS.'Re: TLSMC: MozNSS compatibility interception begins message' - MARC

| 
| 
|  | 
'Re: TLSMC: MozNSS compatibility interception begins message' - MARC


 |

 |

 |




Is this still true for the version I have?  I have tried creating a SSL cert from FreeIPA but that didn't seem to work.  It is also possible I have missed a step.
All help is greatly appreciated.
Thank you!




More information about the Freeradius-Users mailing list