By: Ham Di user 03 Oct 2019 at 8:53 p.m. CDT

2 Responses
Ham Di gravatar
hi community I installed version 4.0 of the gluu (beta) server on a centOS 7 VM to test gluu-radius. The gluu-radius.service is failed, I tried to restart it but still the same problem. The log file indicates that the registration of the cryptographic service has failed. /opt/gluu/radius/logs/gluu-radius.log ``` [INFO ] 2019-10-03 21:37:39.138 [main] ServerEntry - [INFO ] 2019-10-03 21:37:39.165 [main] ServerEntry - [INFO ] 2019-10-03 21:37:39.165 [main] ServerEntry - +---------------------------------------------------------+ [INFO ] 2019-10-03 21:37:39.166 [main] ServerEntry - + Gluu Radius Server + [INFO ] 2019-10-03 21:37:39.166 [main] ServerEntry - + Copyright (c) Gluu Inc. + [INFO ] 2019-10-03 21:37:39.167 [main] ServerEntry - +---------------------------------------------------------+ [INFO ] 2019-10-03 21:37:39.169 [main] ServerEntry - Initializing server [INFO ] 2019-10-03 21:37:39.169 [main] ServerEntry - Application bootstrap configuration file: /etc/gluu/conf/radius/gluu-radius.properties [INFO ] 2019-10-03 21:37:39.170 [main] ServerEntry - Initializing security components [INFO ] 2019-10-03 21:37:39.527 [main] ServerEntry - Security components initialization successful [INFO ] 2019-10-03 21:37:39.528 [main] ServerEntry - Registering bootstrap configuration service [INFO ] 2019-10-03 21:37:39.750 [main] ServerEntry - Bootstrap configuration service registered [INFO ] 2019-10-03 21:37:39.750 [main] ServerEntry - Initializing persistence layer [INFO ] 2019-10-03 21:37:40.158 [main] LdapConnectionProvider - Attempting to create connection pool: 1 [INFO ] 2019-10-03 21:37:41.168 [main] LdapConnectionProvider - Attempting to create connection pool: 1 [INFO ] 2019-10-03 21:37:42.114 [main] LdapEntryManagerFactory - Created LdapEntryManager: org.gluu.persist.ldap.operation.impl.LdapOperationsServiceImpl@4be29ed9 [INFO ] 2019-10-03 21:37:42.115 [main] ServerEntry - Persistence layer initialized [INFO ] 2019-10-03 21:37:42.115 [main] ServerEntry - Registering clients service [INFO ] 2019-10-03 21:37:42.117 [main] ServerEntry - Clients service registration complete [INFO ] 2019-10-03 21:37:42.117 [main] ServerEntry - Registering server configuration service [INFO ] 2019-10-03 21:37:42.119 [main] ServerEntry - Server configuration service registration complete [INFO ] 2019-10-03 21:37:42.119 [main] ServerEntry - Registering OpenID configuration service [INFO ] 2019-10-03 21:37:43.666 [main] ServerEntry - OpenID configuration service registration complete [INFO ] 2019-10-03 21:37:43.667 [main] ServerEntry - Registering cryptographic service [ERROR] 2019-10-03 21:37:43.852 [main] ServerEntry - /etc/certs/gluu-radius.private-key.pem (Permission denied) java.io.FileNotFoundException: /etc/certs/gluu-radius.private-key.pem (Permission denied) at java.io.FileOutputStream.open0(Native Method) ~[?:1.8.0_222] at java.io.FileOutputStream.open(FileOutputStream.java:270) ~[?:1.8.0_222] at java.io.FileOutputStream.<init>(FileOutputStream.java:213) ~[?:1.8.0_222] at java.io.FileOutputStream.<init>(FileOutputStream.java:162) ~[?:1.8.0_222] at java.io.FileWriter.<init>(FileWriter.java:90) ~[?:1.8.0_222] at org.gluu.radius.service.CryptoService.exportAuthPrivateKeyToPem(CryptoService.java:167) ~[super-gluu-radius-server.jar:?] at org.gluu.radius.service.CryptoService.exportAuthPrivateKeyToPem(CryptoService.java:155) ~[super-gluu-radius-server.jar:?] at org.gluu.radius.service.CryptoService.exportAuthPrivateKeyToPem(CryptoService.java:150) ~[super-gluu-radius-server.jar:?] at org.gluu.radius.ServerEntry.registerCryptoService(ServerEntry.java:197) [super-gluu-radius-server.jar:?] at org.gluu.radius.ServerEntry.main(ServerEntry.java:101) [super-gluu-radius-server.jar:?] [ERROR] 2019-10-03 21:37:43.868 [main] ServerEntry - Cryptographic service registration failed ```

By Dzouato Djeumen Rolain Bonaventure staff 04 Oct 2019 at 8:11 a.m. CDT

Dzouato Djeumen Rolain Bonaventure gravatar
Hello Ham Di, Please perform the following steps: 1. Login into your Gluu server instance. 2. Run the command `touch /etc/certs/gluu-radius.private-key.pem`. 3. Run the command `chown radius:gluu /etc/certs/gluu-radius.private-key.pem` This should make it work for now. Let me know how that goes.

By Ham Di user 04 Oct 2019 at 10:09 p.m. CDT

Ham Di gravatar
Hi Rolain, it works now..thank you for your help.