Ok. Thank you very much. Il 16/03/2012 13.30, Heikki Vatiainen ha scritto: > On 03/16/2012 11:50 AM, Denis Pavani wrote: > >> Hello, I recently changed the certificate of my radiator server 3.17.1-1 >> for wireless authentication. >> This is an official certificate from a trusted CA. >> We use EAP-TTLS with PAP inner authentication. >> One client (WinXP with Intel 5100 and Intel client wirelessPRO) receives >> an error and I got this message in the logfile: >> >> EAP result: 1, EAP TTLS Handshake unsuccessful: 26297: 1 - >> error:14094418:SSL routines:func(148):reason (1048) > I think 1048 is alert for 'unknown CA'. You should check the Intel > client settings and make sure the Intel client trusts the CA. If there > are intermediate certificates, try putting the root CA and the > intermediate CAs into EAPTLS_CAFile. > > Your server that runs Radiator is likely quite old? More recent SSL > libraries create more readable messages which are useful for debugging > these kinds of problems. > > Thanks! > Heikki > >
-- ************************************************************************ Ing. Denis Pavani CINECA - Dipartimento Sistemi e Tecnologie NOC - Network Operations Center phone:+39 0516171648 / fax:+39 0512130212 http://www.cineca.it ************************************************************************ "Siamo pagati per adattarci, improvvisare e raggiungere lo scopo" -- Gunny Highway _______________________________________________ radiator mailing list [email protected] http://www.open.com.au/mailman/listinfo/radiator
