Patrick -- In case the FAQ and RTFM aren't helping out, we're doing chap with LDAP as the datastore, this is what I have for our accounting and authorize section:
authorize { suffix preprocess eap chap ldap } authenticate { authtype EAP { eap } authtype CHAP { chap } ldap } Hope this maybe helps you out a bit, this list can be a little harsh sometimes. -- Jeremy C. McDermond Lead Engineer Peak Internet [EMAIL PROTECTED] (541) 738-4921 On 6/15/03 11:30 AM, "Patrick Mcshane" <[EMAIL PROTECTED]> wrote: > Hello, > > Can ANYONE suggest ANY WAY that might allow CHAP requests > to be handled even though we use LDAP to handle authentication > and authorization? Our passwords (userpassword attribute) > are stored in cleartext in the latest OpenLDAP so at least > we are prepared for CHAP. Maybe some sort of hack in the > users file? > > We occasionaly see the following error: > > Sun Jun 15 13:07:20 2003 : Auth: rlm_ldap: Attribute > "User-Password" is required for authentication. > Cannot use "CHAP-Password". > > > Our auth sections look like: > > authorize { > preprocess > chap > mschap > daily > attr_filter > suffix > ldap { > notfound = return > } > files > } > authenticate { > authtype PAP { > pap > } > authtype CHAP { > chap > } > authtype MS-CHAP { > mschap > } > authtype LDAP { > ldap > } > } > > Thanks, > Pat McShane > > > > > - > List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html > - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html