802.1x A verificação do certificado falhou

Eu uso 802.1x com Autenticação PEAP e autenticação interna MSCHAPv2. E receba o erro "CA desconhecida". Eu tentei instalar o CA raiz usando certificados update-ca, mas isso não ajuda.

É possível obter informações adicionais sobre o problema ou simplesmente ignorar o emissor do certificado?

Syslog:

wpa_supplicant[1380]: enp0s25: CTRL-EVENT-EAP-STARTED EAP authentication started
wpa_supplicant[1380]: enp0s25: CTRL-EVENT-EAP-PROPOSED-METHOD vendor=0 method=25
wpa_supplicant[1380]: enp0s25: CTRL-EVENT-EAP-METHOD EAP vendor 0 method 25 (PEAP) selected
wpa_supplicant[1380]: TLS: Certificate verification failed, error 20 (unable to get local issuer certificate) depth 0 for '/C=RU/ST=RU/L=MSK/O=*COMPANY*/OU=ITSEC/CN=*hostname.com*/*[email protected]*'
wpa_supplicant[1380]: enp0s25: CTRL-EVENT-EAP-TLS-CERT-ERROR reason=1 depth=0 subject='/C=RU/ST=RU/L=MSK/O=*COMPANY*/OU=ITSEC/CN=*hostname.com*/emailAddress=*[email protected]*' err='unable to get local issuer certificate'
wpa_supplicant[1380]: SSL: SSL3 alert: write (local SSL3 detected an error):fatal:unknown CA
wpa_supplicant[1380]: OpenSSL: openssl_handshake - SSL_connect error:14090086:SSL routines:ssl3_get_server_certificate:certificate verify failed
wpa_supplicant[1380]: enp0s25: CTRL-EVENT-EAP-FAILURE EAP authentication failed