cleche Posté(e) le 20 avril 2010 Partager Posté(e) le 20 avril 2010 salut! je suis en train de monter un serveur radius de version freeradius 2.0.4 sous un debian lenny,j'ai pu crée les certificats comme je suis un débutant avec linux au demarrage de freeradius j'ai cette erreur espérons que je puisse trouver des solutions. Voici le démarrage ainsi que l'erreur : FreeRADIUS Version 2.0.4, for host i486-pc-linux-gnu, built on Apr 6 2010 at 04:06:57 Copyright © 1999-2008 The FreeRADIUS server project and contributors. There is NO warranty; not even for MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. You may redistribute copies of FreeRADIUS under the terms of the GNU General Public License. Starting - reading configuration files ... including configuration file /etc/freeradius/radiusd.conf including configuration file /etc/freeradius/eap.conf including configuration file /etc/freeradius/sql.conf including configuration file /etc/freeradius/sql/mysql/dialup.conf including configuration file /etc/freeradius/policy.conf including files in directory /etc/freeradius/sites-enabled/ including configuration file /etc/freeradius/sites-enabled/default including configuration file /etc/freeradius/sites-enabled/inner-tunnel including dictionary file /etc/freeradius/dictionary main { prefix = "/usr" localstatedir = "/var" logdir = "/var/log/freeradius" libdir = "/usr/lib/freeradius" radacctdir = "/var/log/freeradius/radacct" hostname_lookups = no max_request_time = 30 cleanup_delay = 5 max_requests = 1024 allow_core_dumps = no pidfile = "/var/run/freeradius/freeradius.pid" user = "freerad" group = "freerad" checkrad = "/usr/sbin/checkrad" debug_level = 0 proxy_requests = yes security { max_attributes = 200 reject_delay = 1 status_server = yes } } radiusd: #### Loading Realms and Home Servers #### radiusd: #### Instantiating modules #### instantiate { Module: Linked to module rlm_exec Module: Instantiating exec exec { wait = yes input_pairs = "request" shell_escape = yes } Module: Linked to module rlm_expr Module: Instantiating expr Module: Linked to module rlm_expiration Module: Instantiating expiration expiration { reply-message = "Password Has Expired " } Module: Linked to module rlm_logintime Module: Instantiating logintime logintime { reply-message = "You are calling outside your allowed timespan " minimum-timeout = 60 } } radiusd: #### Loading Virtual Servers #### server inner-tunnel { modules { Module: Checking authenticate {...} for more modules to load Module: Linked to module rlm_chap Module: Instantiating chap Module: Linked to module rlm_mschap Module: Instantiating mschap mschap { use_mppe = yes require_encryption = no require_strong = no with_ntdomain_hack = no } Module: Linked to module rlm_eap Module: Instantiating eap eap { default_eap_type = "tls" timer_expire = 60 ignore_unknown_eap_types = no cisco_accounting_username_bug = no } Module: Linked to sub-module rlm_eap_tls Module: Instantiating eap-tls tls { rsa_key_exchange = no dh_key_exchange = yes rsa_key_length = 512 dh_key_length = 512 verify_depth = 0 CA_path = "/etc/freeradius/certs/" pem_file_type = yes private_key_file = "/etc/freeradius/certs/sysop@maison.mrs-cert.pem" certificate_file = "/etc/freeradius/certs/sysop@maison.mrs-cert.pem" CA_file = "/etc/freeradius/certs/maison.mrs-cacert.pem" private_key_password = "epikoi" dh_file = "/etc/freeradius/certs/dh" random_file = "/etc/freeradius/certs/random" fragment_size = 1024 include_length = yes check_crl = no } rlm_eap: SSL error error:0906D06C:PEM routines:PEM_read_bio:no start line rlm_eap_tls: Error reading private key file /etc/freeradius/certs/sysop@maison.mrs-cert.pem rlm_eap: Failed to initialize type tls /etc/freeradius/eap.conf[1]: Instantiation failed for module "eap" /etc/freeradius/sites-enabled/inner-tunnel[223]: Failed to find module "eap". /etc/freeradius/sites-enabled/inner-tunnel[176]: Errors parsing authenticate section. } } Errors initializing modules Lien vers le commentaire Partager sur d’autres sites More sharing options...
uzak Posté(e) le 21 avril 2010 Partager Posté(e) le 21 avril 2010 Freeradius a-t-il les droits de lecture de /etc/freeradius/certs/sysop@maison.mrs-cert.pem Lien vers le commentaire Partager sur d’autres sites More sharing options...
cleche Posté(e) le 22 avril 2010 Auteur Partager Posté(e) le 22 avril 2010 Freeradius a-t-il les droits de lecture de /etc/freeradius/certs/sysop@maison.mrs-cert.pem bien sur qu'il a le droit de lecture Lien vers le commentaire Partager sur d’autres sites More sharing options...
uzak Posté(e) le 23 avril 2010 Partager Posté(e) le 23 avril 2010 Alors je sais pas. moi j'ai vu ça, j'ai sauté : Error reading private key file /etc/freeradius/certs/sysop@maison.mrs-cert.pem Mais j'en sais pas plus... Lien vers le commentaire Partager sur d’autres sites More sharing options...
Messages recommandés
Archivé
Ce sujet est désormais archivé et ne peut plus recevoir de nouvelles réponses.