I'm trying to gear up for testing packetfence with a Cisco 4402. From the info
I'm seeing on this list, i need radiusd to work. Unfortuantely, it does not
currently:
service radiusd start
Starting radiusd: [FAILED]
Debugging a little further with radius -X, I see a few issues:
rlm_eap: SSL error error:0906D06C:PEM routines:PEM_read_bio:no start line
rlm_eap_tls: Error reading certificate file /usr/local/pf/conf/ssl/server.crt
rlm_eap: Failed to initialize type tls
/etc/raddb/eap.conf[1]: Instantiation failed for module "eap"
/etc/raddb/sites-enabled/default[114]: Failed to load module "eap".
/etc/raddb/sites-enabled/default[107]: Errors parsing authenticate section.
a quick google of this issue indicates that the eap.conf under raddb doesnt
have the private key password. This was quite possible as the key i used was
not the default "whatever" indicated in raddb/certs/server.cnf. Further more I
did not have a "private_key_password" line under eap.conf.
But, after all trials and tribulations, it seems i'm still stuck. I even
recreated the ssl cert using the very basic/default selfsigned method mentioned
in many articles with a default "whatever" key.
Does anyone have any suggestions?
I'm super stuck!
------------------------------------------------------------------------------
All the data continuously generated in your IT infrastructure contains a
definitive record of customers, application performance, security
threats, fraudulent activity and more. Splunk takes this data and makes
sense of it. Business sense. IT sense. Common sense.
http://p.sf.net/sfu/splunk-d2d-oct
_______________________________________________
Packetfence-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/packetfence-users
