Where are th DH and Random files?

classic Classic list List threaded Threaded
2 messages Options
| Threaded
Open this post in threaded view
|

Where are th DH and Random files?

Reveal MAP
Hi all,

running "radiusd -X" i have that error at the end of the output:

------------------------------------------------------------------------------
------------------------------------------------------------------------------
------------------------------------------------------------------------------
Module: Instantiating eap-tls
   tls {
        rsa_key_exchange = no
        dh_key_exchange = yes
        rsa_key_length = 512
        dh_key_length = 512
        verify_depth = 0
        pem_file_type = yes
        private_key_file = "/etc/raddb/certs/certs/aaa.pem"
        certificate_file = "/etc/raddb/certs/certs/aaa.pem"
        CA_file = "/etc/raddb/certs//CA/ca.pem"
        private_key_password = "*****"
        dh_file = "/etc/raddb/certs/dh"
        random_file = "/etc/raddb/certs/random"
        fragment_size = 1024
        include_length = yes
        check_crl = no
        cipher_list = "DEFAULT"
   }
rlm_eap: SSL error error:00000000:lib(0):func(0):reason(0)
rlm_eap_tls: Error loading randomness
rlm_eap: Failed to initialize type tls
/etc/raddb/eap.conf[17]: Instantiation failed for module "eap"
/etc/raddb/sites-enabled/default[280]: Failed to find module "eap".
/etc/raddb/sites-enabled/default[227]: Errors parsing authenticate section.
 }
}
Errors initializing modules
radiusserver:/etc/raddb #
radiusserver:/etc/raddb #    

------------------------------------------------------------------------------   
------------------------------------------------------------------------------

My conclusion: maybe "random"  file is missing (that is so) and it might be the same with dh file.
these two files are not created by the scripts included in FR-2.0.5 that i am testing now.

I just would like someone to give me the lines, how to create theses two files.
And could it be included in the package like with the previous versions.

Thank you.


Envoyé avec Yahoo! Mail.
Une boite mail plus intelligente.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
| Threaded
Open this post in threaded view
|

Re: Where are th DH and Random files?

Alan DeKok-2
Reveal MAP wrote:
...
> rlm_eap_tls: Error loading randomness
> rlm_eap: Failed to initialize type tls
...
> My conclusion: maybe "random"  file is missing (that is so) and it might
> be the same with dh file.
> these two files are not created by the scripts included in FR-2.0.5 that
> i am testing now.

  Please see raddb/certs.  There are documentation files, example files,
and scripts used to create all of the other files in that directory.

> I just would like someone to give me the lines, how to create theses two
> files.
> And could it be included in the package like with the previous versions.

  They are.

  Alan DeKok.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html