我的 RADIUS 服务器已配置为 EAP-TLS。我拥有有效的服务器证书、私钥和完整链文件。使用客户端证书测试身份验证时,eapol_test我收到错误消息:
(10) eap_tls: ERROR: SSL says error 20 : unable to get local issuer certificate
(10) eap_tls: >>> send TLS 1.2 [length 0002]
(10) eap_tls: ERROR: TLS Alert write:fatal:unknown CA
tls: TLS_accept: Error in error
(10) eap_tls: ERROR: Failed in __FUNCTION__ (SSL_read): error:1417C086:SSL routines:tls_process_client_certificate:certificate verify failed
(10) eap_tls: ERROR: System call (I/O) error (-1)
(10) eap_tls: ERROR: TLS receive handshake failed during operation
(10) eap_tls: ERROR: [eaptls process] = fail
(10) eap: ERROR: Failed continuing EAP TLS (13) session. EAP sub-module failed
(10) eap: Sending EAP Failure (code 4) ID 228 length 4
(10) eap: Failed in EAP select
(10) [eap] = invalid
(10) } # authenticate = invalid
(10) Failed to authenticate the user
这是否意味着 RADIUS 服务器无法找到 Fullchain 文件?或者这是客户端问题?