Hi all I am a new user trying to setup OpenSSL with Freeradius. What I hope to
accomplish is having laptops with certificates as being trusted on the network
and be able to browse the Netware tree just like they would if they were wired
in. The current Novell implementation of 802.1x does not allow for browsing so
im hoping this will be my workaround. That said I have followed these two
documents in my setup: http://www.dslreports.com/forum/remark,9286052
and
http://yb1zdx.arc.itb.ac.id/data/OWP/library-ref-eng/ref-eng-2/physical/wireless/802.1x/FreeRADIUS%20EAP-TLS%20HOWTO.htm
( I used the scripts from this site).
When my laptop boots up i get to the windows login screen (I have removed the
Novell gina to keep it from being a source of problems until this part works) I
see an exchange on radius with the last part showing this error:
rlm_eap_tls
Mark Jones, MCNE
Network Analyst
mjo...@hpsd48.ab.ca
Office 523-2818 ext 182
Mobile 536-6641
Netware, because life is too short to reboot
: >>> TLS 1.0 Alert [length 0002], fatal certificate_unknown
TLS Alert write:fatal:certificate unknown
TLS_accept:error in SSLv3 read client certificate B
rlm_eap: SSL error error:140890B2:SSL routines:SSL3_GET_CLIENT_CERTIFICATE:no
certificate returned
rlm_eap_tls: SSL_read failed in a system call (-1), TLS session fails.
eaptls_process returned 13
rlm_eap: Freeing handler
If I do a windows workstation login at that point I see another exchange that
is successful and I am attached to my SSID and given an IP address.
Can anyone give me some advice on what is or could be wrong with my setup?
Thanks in advance
Mark
This communication is intended for the use of the recipient to which it is
addressed and may contain confidential, personal and/or privileged information.
If you received this e-mail in error, please advise me (by return e-mail or
otherwise) immediately.
