And you set "Auth-Type = EAP".  DON'T DO THAT.

 The "eap.conf" file has BIG HUGE COMMENTS saying DON'T DO THAT.  It
really means DON'T DO THAT.

 You're doing the exact opposite of what the documentation says, and
as a result, it's not working.  You might try following the
recommendations of the server, which WILL allow it to work.

 Alan DeKok.

Ok. Sorry for being such a fool...

Here's what I want to do :

For the moment I've a running freeradius EAP-TTLS/PAP configuration which works fine.

Now I'd like to get credentials from an existing LDAP user storage instead of the Freeradius "users" file (I store MD5 hashed password to have PAP compatibility).

The Ldap bind is ok and I got correct uid and password when I launch a 802.1X request 
from
a laptop client.

But there's some particular things I need to know :
- how do I have to store password in the LDAP database (because I'd like to use 
TTLS/PAP) : crypt/MD5 hashed, clear text ?
- what do I have to put in the "users" file ? (I know that auth-type := EAP is wrong) ?
- if it's not possible to have TTLS/PAP authentication what can I do else 
(PEAP/Mschapv2 ...) ?

I hope my questions are not to stupid.

Thanks.

--
---------------------------
Christophe Saillard
Centre Réseau Communication
Université Louis Pasteur
---------------------------
Tél : 03 90 24 03 17
Fax : 03 90 24 03 12
---------------------------


- List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

Reply via email to