Patrick --
In case the FAQ and RTFM aren't helping out, we're doing chap with LDAP as
the datastore, this is what I have for our accounting and authorize section:
authorize {
suffix
preprocess
eap
chap
ldap
}
authenticate {
authtype EAP {
eap
}
authtype CHAP {
chap
}
ldap
}
Hope this maybe helps you out a bit, this list can be a little harsh
sometimes.
--
Jeremy C. McDermond
Lead Engineer
Peak Internet
[EMAIL PROTECTED]
(541) 738-4921
On 6/15/03 11:30 AM, "Patrick Mcshane" <[EMAIL PROTECTED]> wrote:
> Hello,
>
> Can ANYONE suggest ANY WAY that might allow CHAP requests
> to be handled even though we use LDAP to handle authentication
> and authorization? Our passwords (userpassword attribute)
> are stored in cleartext in the latest OpenLDAP so at least
> we are prepared for CHAP. Maybe some sort of hack in the
> users file?
>
> We occasionaly see the following error:
>
> Sun Jun 15 13:07:20 2003 : Auth: rlm_ldap: Attribute
> "User-Password" is required for authentication.
> Cannot use "CHAP-Password".
>
>
> Our auth sections look like:
>
> authorize {
> preprocess
> chap
> mschap
> daily
> attr_filter
> suffix
> ldap {
> notfound = return
> }
> files
> }
> authenticate {
> authtype PAP {
> pap
> }
> authtype CHAP {
> chap
> }
> authtype MS-CHAP {
> mschap
> }
> authtype LDAP {
> ldap
> }
> }
>
> Thanks,
> Pat McShane
>
>
>
>
> -
> List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
>
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
