> I'm a newbie, and I'm trying to configure a simple EAP-TLS > autententication by using client certificates. > I have follow different procedures that I have found on the web to do > that, but no successful currently > > http://wiki.freeradius.org/WPA_HOWTO#HOWTO_Do_It:_An_Outline
> - 2nd... What is wrong in my configuration? I can not distinguish, at > the moment, which is the entry at logs that I should focus. > [tls] <<< TLS 1.0 Handshake [length 036f], Certificate > --> verify error:num=20:unable to get local issuer certificate > [tls] >>> TLS 1.0 Alert [length 0002], fatal unknown_ca > TLS Alert write:fatal:unknown CA If you had followed the howto guide and done: In the list of trusted root CAs, check only the CA that corresponds to the certificate you have generated error wouldn't happen. You most likely haven't imported you self-signed root CA onto the client. Ivan Kalik - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
