Jake, I am glad that everything is sorted out now. For the module, we considered at the beginning that this action is related to RADIUS directly, and not config. Normally, on fresh install, radius is supposed to build the certs at the first startup or the user can build them by manually run make. Another reason why we don't take action is because people can use their own certs, and not the generated ones. We will probably add an extra step in the administration guide for the "make" step or to ensure that everything is properly setup in that directory.
Thanks for sharing your thoughts :) On 11-05-06 10:04 AM, Sallee, Stephen (Jake) wrote: > I found it! Running the bootstrap command made the DH file correctly (make > dh will do it too) but the file permissions are wrong they are root:root but > they need to be root:radiusd, once changed FR starts right up. Thank you for > your assistance. Is there any way the packetfence-freeradisu2.rpm can be > modified to run the bootstrap (optionally) and change the group? Just a > thought. > > Jake Sallee > Godfather of Bandwidth > Network Engineer > University of Mary Hardin-Baylor > 900 College St. > Belton, Texas > 76513 > Fone: 254-295-4658 > Phax: 254-295-4221 > > > -----Original Message----- > From: Francois Gaudreault [mailto:[email protected]] > Sent: Friday, May 06, 2011 8:27 AM > To: [email protected] > Subject: Re: [Packetfence-users] PF 2.2 fresh install FreeRADIUS integration > problem > > Jake, > > Try "make dh", it should work. > > On 11-05-06 9:21 AM, Sallee, Stephen (Jake) wrote: >> Thanks for the info, here is what I get: >> >> [root@NAC01 ~]# cd /etc/raddb/certs/ >> [root@NAC01 certs]# make >> make: Nothing to be done for `all'. >> [root@NAC01 certs]# >> >> I did run the bootstrap command in that directory and generate the >> certs that way but I still get the same error. (I actually did this >> before I posted to the list : ) >> >> rlm_eap_tls: Unable to open DH file - /etc/raddb/certs/dh >> rlm_eap: Failed to initialize type tls >> /etc/raddb/eap.conf[1]: Instantiation failed for module "eap" >> /etc/raddb/sites-enabled/packetfence-tunnel[5]: Failed to find module "eap". >> /etc/raddb/sites-enabled/packetfence-tunnel[3]: Errors parsing >> authorize section >> >> >> Jake Sallee >> Godfather of Bandwidth >> Network Engineer >> University of Mary Hardin-Baylor >> 900 College St. >> Belton, Texas >> 76513 >> Fone: 254-295-4658 >> Phax: 254-295-4221 >> >> -----Original Message----- >> From: [email protected] [mailto:[email protected]] >> Sent: Friday, May 06, 2011 6:26 AM >> To: [email protected] >> Subject: Re: [Packetfence-users] PF 2.2 fresh install FreeRADIUS >> integration problem >> >> Hi Jake, >> >> You need to generate the certificates in RADIUS. Our module configure >> everything, but it doesn't create RADIUS certs. >> >> Go to /etc/raddb/certs, and do a "make". >> >> >> >> >> >> ---------------------------------------------------------------------- >> -------- WhatsUp Gold - Download Free Network Management Software The >> most intuitive, comprehensive, and cost-effective network management toolset >> available today. Delivers lowest initial acquisition cost and overall TCO >> of any competing solution. >> http://p.sf.net/sfu/whatsupgold-sd >> _______________________________________________ >> Packetfence-users mailing list >> [email protected] >> https://lists.sourceforge.net/lists/listinfo/packetfence-users >> >> ---------------------------------------------------------------------- >> -------- WhatsUp Gold - Download Free Network Management Software The >> most intuitive, comprehensive, and cost-effective network management >> toolset available today. Delivers lowest initial acquisition cost and >> overall TCO of any competing solution. >> http://p.sf.net/sfu/whatsupgold-sd >> _______________________________________________ >> Packetfence-users mailing list >> [email protected] >> https://lists.sourceforge.net/lists/listinfo/packetfence-users > > -- > Francois Gaudreault, ing. jr > [email protected] :: +1.514.447.4918 (x130) :: www.inverse.ca Inverse > inc. :: Leaders behind SOGo (www.sogo.nu) and PacketFence > (www.packetfence.org) > > > ------------------------------------------------------------------------------ > WhatsUp Gold - Download Free Network Management Software > The most intuitive, comprehensive, and cost-effective network > management toolset available today. Delivers lowest initial > acquisition cost and overall TCO of any competing solution. > http://p.sf.net/sfu/whatsupgold-sd > _______________________________________________ > Packetfence-users mailing list > [email protected] > https://lists.sourceforge.net/lists/listinfo/packetfence-users > > ------------------------------------------------------------------------------ > WhatsUp Gold - Download Free Network Management Software > The most intuitive, comprehensive, and cost-effective network > management toolset available today. Delivers lowest initial > acquisition cost and overall TCO of any competing solution. > http://p.sf.net/sfu/whatsupgold-sd > _______________________________________________ > Packetfence-users mailing list > [email protected] > https://lists.sourceforge.net/lists/listinfo/packetfence-users -- Francois Gaudreault, ing. jr [email protected] :: +1.514.447.4918 (x130) :: www.inverse.ca Inverse inc. :: Leaders behind SOGo (www.sogo.nu) and PacketFence (www.packetfence.org) ------------------------------------------------------------------------------ WhatsUp Gold - Download Free Network Management Software The most intuitive, comprehensive, and cost-effective network management toolset available today. Delivers lowest initial acquisition cost and overall TCO of any competing solution. http://p.sf.net/sfu/whatsupgold-sd _______________________________________________ Packetfence-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/packetfence-users
