Powered by Jitbit .Net Forum free trial version. dismiss

HomeTekCERT

Self Signed X.509 Certificate Generator for Windows

TekCERT Version 2.2 Messages in this topic - RSS

Admin
Admin
Administrator
Posts: 4688


5.07.2014
Admin
Admin
Administrator
Posts: 4688
· TekCERT can sign certificate signing requests with a user selected/generate CA certificate (Self Signed Certificate) (Version 2.2).
· Command line options for private (-xp) and public key (-xb) export functions has been added (Version 2.2).
0 link
ssl_236
ssl_236
Posts: 29


17.03.2016
ssl_236
ssl_236
Posts: 29
HI!
after update tekcert to v.2.2.7.0 and refresh certificate's see error in log tekradius lt v.4.9.2.0:

Framed-MTU = 1400
State = 6286333ff8611566a5d915499a238a64
NAS-Port-Type = 19
Called-Station-Id = 24-A4-3C-E4-20-28:IP1
Connect-Info = CONNECT 0Mbps 802.11
Calling-Station-Id = 24-A4-3C-B4-B3-99
NAS-Port = 0
NAS-Identifier = nsm2
User-Name = nsm

17.03.2016 10:19:53.265 - PEAP/EAP-(T)TLS Authentication commencing for user 'nsm' [2/25 (197)]

17.03.2016 10:19:53.266 - Server TLS Certificate 'TELECOM_Server' not found in certificate store (Group: NSM).

Pls help my
0 link
Admin
Admin
Administrator
Posts: 4688


17.03.2016
Admin
Admin
Administrator
Posts: 4688
Hi,

Please check if this certificate, TELECOM_Server, exists in Windows Certificate Store / Local Machine / Personal folder.

Best regards,

Yasin KAPLAN
0 link
ssl_236
ssl_236
Posts: 29


24.03.2016
ssl_236
ssl_236
Posts: 29
HI!
certificate's not store'd

0 link
ssl_236
ssl_236
Posts: 29


24.03.2016
ssl_236
ssl_236
Posts: 29
Login name client = certificate name ?
example log file:
User-Name = nsm

certificate placed in Windows Certificate Store / Local Machine / Personal folder = nsm.cer ???
0 link
ssl_236
ssl_236
Posts: 29


24.03.2016
ssl_236
ssl_236
Posts: 29
0 link
Admin
Admin
Administrator
Posts: 4688


25.03.2016
Admin
Admin
Administrator
Posts: 4688
Are you trying to implement EAP-TLS? If so, you should set client certifcate name as Client-TLS-Certificate.
0 link
ssl_236
ssl_236
Posts: 29


25.03.2016
ssl_236
ssl_236
Posts: 29
INVESTAD - server name (W2008)
nsm - login name client

1. create Telecom_CA (self signed)
2. create INVESTAD signed Telecom_CA, stored Local Machine\Personal
3. create nsm signed Telecom_CA, stored Local Machine\Personal

TekRADIUS LT

1. TLS-Server-Certificate = INVESTAD
2. TLS-Client-Certificate = nsm
3. User-password = password nsm



RadAuth req. from : 192.168.4.16:53618 [UDP] - 25.03.2016 16:50:53.542
Size : 233 / 233
Identifier : 113
Attributes :

Framed-MTU = 1400
State = 0781bf4614406d3cf50e50bb4c02a1de
NAS-Port-Type = 19
Called-Station-Id = 24-A4-3C-E4-20-28:IP1
Connect-Info = CONNECT 0Mbps 802.11
Calling-Station-Id = 24-A4-3C-B4-B3-99
NAS-Port = 0
NAS-Identifier = nsm2
User-Name = nsm

25.03.2016 16:50:53.544 - PEAP/EAP-(T)TLS Authentication commencing for user 'nsm' [2/25 (113)]

25.03.2016 16:50:53.545 - Server TLS Certificate 'INVESTAD' not found in certificate store (Group: NSM).

25.03.2016 16:50:54.530 - Session timer expired for the session : 0f74d63a69196e6de0c21c22c9e33efe

25.03.2016 16:50:54.530 - Session timer expired for the session : 73d866775ee8d8fbe902c5e92753588a

25.03.2016 16:50:54.530 - Session timer expired for the session : ece00deebcd00e0694b8efa544a022ff

25.03.2016 16:50:54.530 - Session timer expired for the session : 6e6aefe2969d8c55112dca5ed3b7525a

25.03.2016 16:50:54.530 - Session timer expired for the session : bddb064c429b8e607c0f77360657aa63

25.03.2016 16:50:54.530 - Session timer expired for the session : c01732ddcf6aafc0ccdd62fcadf85099

25.03.2016 16:50:54.530 - Session timer expired for the session : b58121b5b15aeee9f908284f4b92dab3

25.03.2016 16:50:54.530 - Session timer expired for the session : 8cd8558811b40152d4d452ca1147364f
0 link
Admin
Admin
Administrator
Posts: 4688


26.03.2016
Admin
Admin
Administrator
Posts: 4688
Do you see 'INVESTAD' in Windows certificate store folder Local Computer\Personal?
0 link






Powered by Jitbit Forum 8.3.8.0 © 2006-2013 Jitbit Software