Open ssl & Freeradius

Previous Topic Next Topic
 
classic Classic list List threaded Threaded
2 messages Options
Reply | Threaded
Open this post in threaded view
|

Open ssl & Freeradius

Seniha S. ÖZTEMİZ TULGAR
Hello,

I installed the new version of freeradius and trying to configure it. My windows10 clients gets authenticated but windows7 clients gets the following errors. It seems that it is about openssl. Can you help me regarding this problem. Any suggestions ?

Tue Jul 25 14:11:59 2017 : Debug: (1) eap_ttls: [eaptls verify] = ok
Tue Jul 25 14:11:59 2017 : Debug: (1) eap_ttls: Done initial handshake
Tue Jul 25 14:11:59 2017 : Debug: (1) eap_ttls: (other): before SSL initialization
Tue Jul 25 14:11:59 2017 : Debug: (1) eap_ttls: TLS_accept: before SSL initialization
Tue Jul 25 14:11:59 2017 : Debug: Ignoring cbtls_msg call with pseudo content type 256, version 0
Tue Jul 25 14:11:59 2017 : Debug: (1) eap_ttls: TLS_accept: before SSL initialization
Tue Jul 25 14:11:59 2017 : Debug: (1) eap_ttls: <<< recv TLS 1.2  [length 002d]
Tue Jul 25 14:11:59 2017 : Debug: Ignoring cbtls_msg call with pseudo content type 256, version 0
Tue Jul 25 14:11:59 2017 : Debug: (1) eap_ttls: >>> send TLS 1.0 Alert [length 0002], fatal handshake_failure
Tue Jul 25 14:11:59 2017 : ERROR: (1) eap_ttls: TLS Alert write:fatal:handshake failure
Tue Jul 25 14:11:59 2017 : Error: tls: TLS_accept: Error in error
Tue Jul 25 14:11:59 2017 : ERROR: (1) eap_ttls: Failed in __FUNCTION__ (SSL_read): ../ssl/statem/statem_srvr.c[1404]:error:1417A0C1:SSL routines:tls_post_process_client_hello:no shared cipher
Tue Jul 25 14:11:59 2017 : ERROR: (1) eap_ttls: System call (I/O) error (-1)
Tue Jul 25 14:11:59 2017 : ERROR: (1) eap_ttls: TLS receive handshake failed during operation
Tue Jul 25 14:11:59 2017 : ERROR: (1) eap_ttls: [eaptls process] = fail
Tue Jul 25 14:11:59 2017 : ERROR: (1) eap: Failed continuing EAP TTLS (21) session.  EAP sub-module failed

--
Kind regards,

Seniha Ö.


--
openssl-users mailing list
To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-users
Reply | Threaded
Open this post in threaded view
|

Re: Open ssl & Freeradius

Thomas J. Hruska
On 7/25/2017 4:15 AM, Seniha S. ÖZTEMİZ TULGAR wrote:
> Hello,
>
> I installed the new version of freeradius and trying to configure it. My
> windows10 clients gets authenticated but windows7 clients gets the
> following errors. It seems that it is about openssl. Can you help me
> regarding this problem. Any suggestions ?

You are technically on the wrong list.  The Freeradius project has its
own user mailing list.  You should ask questions about Freeradius on
that list.


> Tue Jul 25 14:11:59 2017 : Error: tls: TLS_accept: Error in error

This line is entertaining.  (But not relevant.)


> Tue Jul 25 14:11:59 2017 : ERROR: (1) eap_ttls: Failed in __FUNCTION__
> (SSL_read): ../ssl/statem/statem_srvr.c[1404]:error:1417A0C1:SSL
> routines:tls_post_process_client_hello:no shared cipher

This is your problem.  The handshake between Freeradius and your client
failed due to "no shared cipher".  Change your server and/or client
cipher list(s) to something compatible.

--
Thomas Hruska
Shining Light Productions

Home of BMP2AVI and Win32 OpenSSL.
http://www.slproweb.com/
--
openssl-users mailing list
To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-users