Problem with Self-Signed certificate and wpa_supplicant

Tue, 14 Aug 2007 22:24:06 -0700 

Hi,

I have a problem with self assigned certificate when using wpa_supplicant as
(exactly) described 
in the attached old message in this forum.  I wonder if anybody can shed
some light into it.    

Here is what tried to solve it, but without any luck:

* find OPENSSLDIR ("openssl version -d")
* put the self signed certificate ( cacert.pem) in $OPENSSLDIR/certs
* create the hash-based symlink using some script
* then I do "openssl verify cacert.pem", and got ok

despite the above, I till get 

TLS: Certificate verification failed, error 18 (self signed   
certificate) depth 0 for '/C=US/ST= .. .....' 
SSL: (where=0x4008 ret=0x230) 
SSL: SSL3 alert: write (local SSL3 detected an error):fatal:unknown CA 

************** old message *************

Problem with Self-Signed certificate and wpa_supplicant   by Philippe Vachon
Jun 23, 2005; 08:52am :: Rate this Message:    (use ratings to moderate[?])

Reply | Reply to Author | View in Thread 
Hello All. 

I've been trying to setup WPA security on my network. As such, I have   
been generating my own root and server certificate, and signing my   
client certificates with said root certificate. However, for some   
reason, whenever I try to use the certificates with wpa_supplicant, I   
get the following errors: 

TLS: Certificate verification failed, error 18 (self signed   
certificate) depth 0 for '/C=CA/O=Radialink/CN=RADIUS' 
SSL: (where=0x4008 ret=0x230) 
SSL: SSL3 alert: write (local SSL3 detected an error):fatal:unknown CA 
SSL: (where=0x1002 ret=0xffffffff) 
SSL: SSL_connect:error in SSLv3 read server certificate B 
SSL: SSL_connect: error:14090086:SSL   
routines:SSL3_GET_SERVER_CERTIFICATE:certificate verify failed 

whenever I try to authenticate. I am reasonably certain there is no   
problem with my FreeRADIUS configuration, however, I suspect there   
might be a problem with my root certificate based on this error. Is   
anybody able to shed any light on this for me? 

Thanks, 
Phil. 


-- 
View this message in context: 
http://www.nabble.com/Problem-with-Self-Signed-certificate-and-wpa_supplicant-tf4270305.html#a12154183
Sent from the OpenSSL - User mailing list archive at Nabble.com.

______________________________________________________________________
OpenSSL Project                                 http://www.openssl.org
User Support Mailing List                    openssl-users@openssl.org
Automated List Manager                           [EMAIL PROTECTED]

Reply via email to