Hi Artur
> > rlm_eap_tls: Length Included
> > <<< TLS 1.0 Alert [length 0002], fatal unknown_ca
> > ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
>
> die you add the certificate of the CA which signed and issued the user
> certificate into root.pem and configured it to be the CA file in
> radiusd.conf?
After create certificates I have
client`s certificates
cert-clt.der
cert-clt.pem
cert-clt.p12
server`s certificates
cert-srv.der
cert-srv.pem
cert-srv.p12
root`s certificates
root.der
root.pem
root.p12
directory
demoCA/
certs/ is empty
crl/ is empty
newcerts/
01.pem (client cert)
02.pem (server cert)
private/
cakey.pem
cacert.pem
Radiusd.conf
CA_file = ${confdir}/eap-test/root.pem
I was try to set root.pem (root`s certificate). It doesn`t work.
May be copy cert.clt.pem, cert-srv.pem an root.pem to one file CA.pem??
Dmitri
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
