EAP-TLS unable to get local issuer certificate
Alan DeKok
aland at deployingradius.com
Wed Jun 7 07:34:30 UTC 2023
On Jun 7, 2023, at 9:28 AM, MH <h33927318 at gmail.com> wrote:
>
> But there's already ca_cert in wpa_supplicant configuration.
So there's nothing wrong with the configuration, and it works?
Or, maybe there's something wrong with the configuration. Because it doesn't work.
The error is "fatal: unknown CA". The only solution is to make sure that the CA is known.
Maybe the problem is that the client certificate is issued by a CA that the server doesn't know. It's difficulty to tell, because you've "helpfully" removed nearly all of the debug output. The documentation for FreeRADIUS says to post all of the debug output. For precisely this reason.
Alan DeKok.
More information about the Freeradius-Users
mailing list