Hi everybody.
I'm using freeradius with EAP/TLS authentication method and everything is working fine
if I use Windows 2000 and XP clients (with Funk Odyssey client), but using Windows 98
and the same certificates (created using OpenSSL) and again the Odyssey client I
cannot authenticate and what I got on the freeradius log is what I reported below.
Does anybody already faced this problem or has some suggestion ?
Thank you in advance.
Mattia
modcall: group authorize returns updated for request 474
rad_check_password: Found Auth-Type EAP
auth: type "EAP"
modcall: entering group authenticate for request 474
rlm_eap: EAP packet type notification id 4 length 17
rlm_eap: EAP Start not found
rlm_eap: Request found, released from the list
rlm_eap: EAP_TYPE - tls
rlm_eap: processing type tls
rlm_eap_tls: Authenticate
rlm_eap_tls: Length Included
rlm_eap_tls: <<< TLS 1.0 Alert [length 0002], fatal handshake_failure
TLS Alert read:fatal:handshake failure
TLS_accept:failed in SSLv3 read client certificate A
rlm_eap_tls: SSL_read Error
1247:error:14094410:SSL routines:SSL3_READ_BYTES:sslv3 alert handshake
failure:s3_pkt.c:1052:SSL alert number 40
1247:error:140940E5:SSL routines:SSL3_READ_BYTES:ssl handshake failure:s3_pkt.c:837:
Error code is ..... 5
Error in SSL ..... 5
rlm_eap_tls: BIO_read Error
Error code is ..... 5
Error in SSL ..... 5
rlm_eap: Freeing handler
modcall[authenticate]: module "eap" returns ok for request 474
modcall: group authenticate returns ok for request 474
Delaying request 474 for 1 seconds
Finished request 474
Going to the next request
Waking up in 5 seconds...
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
