Unable to use freeradius 3.0.26 with openssl 3.0
Amit P
amit.subscription at gmail.com
Mon Jan 20 07:38:31 UTC 2025
Hi,
I am using Freeradius version 3.0.26 for a basic authentication, My system
is upgraded from Openssl 1.0.2 to 3.0.4 version and after this the
authentication is failing because server is rejecting the incoming request with
following message.
Dropping packet without response because of error: Received packet from
10.0.0.1 with invalid Message-Authenticator! (Shared secret is incorrect.)
This must be happening, because MD5 is deprecated in openssl3.0 which is
used by Freeradius for calculating Message-Authenticator attribute.
I could see in release notes of 3.0.26, openssl 3.0 and tls1.3 support is
added.
i need help with the below line from release notes.
*Add configure-time FIPS workaround to use internal MD4/MD5 implementations
when disabled in OpenSSL.*
I believe this workaround is the solution to my problem, can you please
help me in what exactly needs to be done for this workaround.
Thanks & Regards,
Amit
More information about the Freeradius-Users
mailing list