Hi,
I have a problem with EAP-TLS authentication:
Radius starts without errors, but when it receive a access-request it dies:
Starting - reading configuration files ...
reread_config: reading radiusd.conf
Config: including file: /usr/local/etc/raddb/clients.conf
main: prefix = "/usr/local"
main: localstatedir = "/usr/local/var"
main: logdir = "/usr/local/var/log/radius"
main: libdir = "/usr/local/lib"
main: radacctdir = "/usr/local/var/log/radius/radacct"
main: hostname_lookups = no
read_config_files: reading dictionary
read_config_files: reading clients
read_config_files: reading realms
read_config_files: reading naslist
main: max_request_time = 30
main: cleanup_delay = 5
main: max_requests = 1024
main: delete_blocked_requests = 0
main: port = 0
main: allow_core_dumps = yes
main: log_stripped_names = yes
main: log_auth = yes
main: log_auth_badpass = yes
main: log_auth_goodpass = yes
main: pidfile = "/usr/local/var/run/radiusd/radiusd.pid"
main: bind_address = 192.168.10.130 IP address [192.168.10.130]
main: user = "(null)"
main: group = "(null)"
main: usercollide = no
main: lower_user = "no"
main: lower_pass = "no"
main: nospace_user = "no"
main: nospace_pass = "no"
main: proxy_requests = no
security: max_attributes = 200
security: reject_delay = 1
main: debug_level = 0
read_config_files: entering modules setup
Module: Library search path is /usr/local/lib
Module: Loaded eap
eap: default_eap_type = "tls"
eap: timer_expire = 60
rlm_eap: Loaded and initialized the type md5
tls: rsa_key_exchange = no
tls: dh_key_exchange = yes
tls: rsa_key_length = 512
tls: dh_key_length = 512
tls: verify_depth = 0
tls: CA_path = "(null)"
tls: pem_file_type = yes
tls: private_key_file = "/usr/local/openssl/ssl/cert-srv.pem"
tls: certificate_file = "/usr/local/openssl/ssl/cert-srv.pem"
tls: CA_file = "/usr/local/openssl/ssl/demoCA/cacert.pem"
tls: private_key_password = "whatever"
tls: dh_file = "/usr/src/802/cert/dh"
tls: random_file = "/usr/src/802/cert/random"
tls: fragment_size = 1024
tls: include_length = yes
rlm_eap_tls: conf N ctx stored
rlm_eap: Loaded and initialized the type tls
Module: Instantiated eap (eap)
Listening on IP address 192.168.10.130, ports 1812/udp and 1813/udp.
Ready to process requests.
rad_recv: Access-Request packet from host 192.168.10.15:14390, id=201, length=77
Message-Authenticator = 0xe87447ea0e2f1ead0fca57da2005a3b6
User-Name = "client"
NAS-IP-Address = 192.168.10.15
NAS-Port = 13
EAP-Message = "\002l\000\013\001client"
Framed-MTU = 1000
modcall: entering group authorize
modcall[authorize]: module "eap" returns updated
modcall: group authorize returns updated
rad_check_password: Found Auth-Type EAP
auth: type "EAP"
modcall: entering group authenticate
rlm_eap: processing type tls
/usr/local/sbin/radiusd: error while loading shared libraries:
/usr/local/lib/rlm_eap_tls-0.7.so: undefined symbol: SSL_set_msg_callback
Can you help me?!
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html