Authentication issue unsupported protocol

classic Classic list List threaded Threaded
2 messages Options
Reply | Threaded
Open this post in threaded view
|

Authentication issue unsupported protocol

mary-sc
Hi,

I am trying to connect my esp32 device to an enterprise network which uses freeradius version 3.0.20 and i am encountering unsupported protocol issue as in the log below. However, my phone can connect to the same network. Also, my colleague (unfortunate we are working apart as we are working remotely) was able to connect the same device but he is using the version 2.2.8. What could possibly be the cause of the issue and how to resolve it?

==========================================================================
(2) Found Auth-Type = eap
(2) # Executing group from file /etc/freeradius/3.0/sites-enabled/default
(2)   authenticate {
(2) eap: Expiring EAP session with state 0xe0953071e1962993
(2) eap: Finished EAP session with state 0xe0953071e1962993
(2) eap: Previous EAP request found for state 0xe0953071e1962993, released from the list
(2) eap: Peer sent packet with method EAP PEAP (25)
(2) eap: Calling submodule eap_peap to process data
(2) eap_peap: Continuing EAP-TLS
(2) eap_peap: Peer indicated complete TLS record size will be 60 bytes
(2) eap_peap: Got complete TLS record (60 bytes)
(2) eap_peap: [eaptls verify] = length included
(2) eap_peap: (other): before SSL initialization
(2) eap_peap: TLS_accept: before SSL initialization
(2) eap_peap: TLS_accept: before SSL initialization
(2) eap_peap: <<< recv TLS 1.3  [length 0037]
(2) eap_peap: >>> send TLS 1.0 Alert [length 0002], fatal protocol_version
(2) eap_peap: ERROR: TLS Alert write:fatal:protocol version
tls: TLS_accept: Error in error
(2) eap_peap: ERROR: Failed in __FUNCTION__ (SSL_read): error:14209102:SSL routines:tls_early_post_process_client_hello:unsupported protocol
(2) eap_peap: ERROR: System call (I/O) error (-1)
(2) eap_peap: ERROR: TLS receive handshake failed during operation
(2) eap_peap: ERROR: [eaptls process] = fail
(2) eap: ERROR: Failed continuing EAP PEAP (25) session.  EAP sub-module failed
(2) eap: Sending EAP Failure (code 4) ID 3 length 4
(2) eap: Failed in EAP select
(2)     [eap] = invalid
(2)   } # authenticate = invalid
(2) Failed to authenticate the user
==========================================================================

Thank you so much!
Reply | Threaded
Open this post in threaded view
|

Re: Authentication issue unsupported protocol

GregChapman
You have posted on Nabble Support. I'm guessing you were intending to post on the forum at:
http://freeradius.1045715.n5.nabble.com/
However, that is a read-only archive of posts on their mail list. It looks as if this is where you need to go:
https://freeradius.org/support/ 
Volunteer Helper - but recommending that users move off the platform!
Once the admin for GregHelp now deleted.