Freeradius eap-ttls

Français
Log in to reply
  • F

    Bonjour,

    J'ai installé freeradius v 2 sur pfsense mais je n'arrive pas à m'authentifier avec eap-ttls sur un client windows 7, j'ai le message suivant sur pfsense:

    TLS Alert read:fatal:unknown CA
    Jun 5 14:14:16 radiusd[21064]: TLS_accept: failed in SSLv3 read client certificate A
    Jun 5 14:14:16 radiusd[21064]: rlm_eap: SSL error error:14094418:SSL routines:SSL3_READ_BYTES:tlsv1 alert unknown ca
    Jun 5 14:14:16 radiusd[21064]: SSL: SSL_read failed inside of TLS (-1), TLS session fails.
    Jun 5 14:14:16 radiusd[21064]: Login incorrect (TLS Alert read:fatal:unknown CA): [Nicolas] (from client ap port 532 cli 0014.d16a.07d2)

    J'ai mis le certificat CA sur la machine client mais apparemment, il ne connaît pas le certificat.
    J'ai généré les certificats CA, server et client avec cert manager sur pfsense. On sait s 'il faut auto-signé le CA. Quelle(s) est(sont) le(s) certificat(s) à mettre sur la machine client.

    Help me.

    Merci

    0

Products

Services

Support

News

Resources

Company

Our Mission

We provide leading-edge network security at a fair price - regardless of organizational size or network sophistication. We believe that an open-source security model offers disruptive pricing along with the agility required to quickly address emerging threats.

Subscribe to our Newsletter

Product information, software announcements, and special offers. See our newsletter archive to sign up for future newsletters and to read past announcements.

© 2020 Rubicon Communications, LLC | Privacy Policy