Sorry about the previous email.... wasn't awake yet... here is a repost: Hello, If your LDAP back-end uses encrypted passwords certain authentication methods cannot be used.
PEAP-EAP-MSCHAPV2 for example requires either clear-text passwords or Microsoft NT HASH passwords. I am not sure about LEAP. Because SecureW2 v1 sends over the password in the clear it can be used on any kind of database encryption their is. Are you using encryption in your LDAP database? Tom Rixom Alfa & Ariss > -----Original Message----- > From: Tom Rixom > Sent: Friday, February 20, 2004 1:51 PM > To: [EMAIL PROTECTED] > Subject: RE: Alfa&Ariss Client Heeeeeeeeeeeeelp!!!!!!! > > > Hello, > > If your LDAP back-end uses encrypted passwords certain authentication > methods > cannot be used as they > > PEAP-EAP-MSCHAPV2 for example requires either clear-text passwords or > Microsoft > NT HASH passwords. I am not sure about LDAP. > > Because SecureW2 1 sends over the password in the clear it can be used > on any > kind of database encryption their is. > > Are you using encryption in your LDAP database? > > Tom Rixom > Alfa & Ariss > > > -----Original Message----- > > From: Jean-Paul Chapalain [mailto:[EMAIL PROTECTED] > > Sent: Friday, February 20, 2004 1:33 PM > > To: [EMAIL PROTECTED] > > Subject: Re: Alfa&Ariss Client Heeeeeeeeeeeeelp!!!!!!! > > > > > > Hi Alan, > > > > Alan DeKok wrote: > > > Jean-Paul Chapalain <[EMAIL PROTECTED]> wrote: > > > > > >>Could you say me how to retreive clear-text password from > Ldap with > > >>FreeRadius ? > > > > > > > > > You put the password into the database, and FreeRADIUS > > retrieves it. > > > See the default LDAP schema. > > I don't understand what is this database ! > > > > > > > > >>With a same config, EAP/TTLS is working with Ldap when > EAP/LEAP or > > >>EAP/PEAP is working only with local User-Password ! > > > > > > > > > Of course. It needs a clear-text password. If you don't get it > > > from LDAP, then you must supply it elsewhere. > > > > > > > > >>I'm interested for a sample of EAP/LEAP or EAP/PEAP config > > working with > > >>Ldap Backend. > > > > > Could you explain me why EAP/TTLS works fine with Ldap backend > > authentication when EAP/PEAP and EAP/LEAP don't run with the > > same config > > in FreeRadius ? > > My goal is authenticate wireless clients with a > user/password of our > > Ldap Backend. For Windows machines, we 'll use EAP/TTLS that > > works fine, > > but for Mac OSX we'll use a EAP/LEAP client. > > > > > > LEAP and PEAP are 100% independent of LDAP. > > > > > > Get PAP to work with a user & password in LDAP. The EXACT same > > > configuration will work for LEAP and PEAP. > > > > > > Alan DeKok. > > > > > > - > > > List info/subscribe/unsubscribe? See > > http://www.freeradius.org/list/users.html > > > > Thanks for your help, > > > > Jean-Paul. > > -- > > -- Jean-Paul Chapalain - GICM - Resp. Reseaux et Infrastructure > > -- 32 rue Mirabeau - Le Relecq-Kerhuon - 29808 Brest Cedex > 9, FRANCE > > -- Tel +33298002873 - Fax +33298284005 - > [EMAIL PROTECTED] > > -- Key Fingerprint: 192C 1CFE F24A 050D F280 A086 AF15 > 8631 3ABB 4C7D > > > > - > List info/subscribe/unsubscribe? See > http://www.freeradius.org/list/users.html > - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
