unknown CA when trying to authenticate

Tyler Montney montneytyler at gmail.com
Mon Feb 22 04:57:46 CET 2021

Version 3.0.16, running on Ubuntu 18.04.

While running freeradius -X and trying to connect a user (Ubiquiti
controller), I see "eap_peap: ERROR: TLS Alert read:fatal:unknown CA".

/etc/freeradius/3.0/mods-enabled/eap  has its tls-config tls-common section

private_key_file = /etc/freeradius/3.0/certs/letsencrypt/privkey.pem
certificate_file = /etc/freeradius/3.0/certs/letsencrypt/cert.pem
ca_file = /etc/ssl/certs/ca-certificates.crt

My CA was copied to /usr/local/share/ca-certificates/ and ran
dpkg-reconfigure ca-certificates. I then checked ca-certificates.crt and
confirmed my CA was appended to the bottom.

More information about the Freeradius-Users mailing list