LDAP bind identity provided une the ldap section. TTLS with LDAP works fine for example. How i can verify if identity have read access to the clear password ?
----- Original Message ----- From: "Paul Bender" <[EMAIL PROTECTED]> To: <[EMAIL PROTECTED]> Sent: Friday, August 06, 2004 2:14 AM Subject: Re: peap + openldap > Does the LDAP bind identity provided in the ldap section of the > radiusd.conf file have read access to the clear passwords, and is > FreeRADIUS binding successfully to the LDAP server? > > Alexandre Durand wrote: > > > It works without LDAP. And i use debian doing my tests !! > > > > I don't understand why EAP/PEAP doesn't work with LDAP . I test EAP/TLS > > with LDAP and it works. > > > > ----- Original Message ----- > > *From:* Alexandre Durand <mailto:[EMAIL PROTECTED]> > > *To:* [EMAIL PROTECTED] > > <mailto:[EMAIL PROTECTED]> > > *Sent:* Wednesday, August 04, 2004 12:17 PM > > *Subject:* peap + openldap > > > > Hi, > > > > I want to make an authentication PEAP between Win XP, openldap, and > > freeradius. I ve a problem between mschapv2 and openldap. Indeed, I > > make a test with PEAP without openldap and its works. But if i want > > to use openldap + freeradius with peap i get an error in eap-mschap > > module of freeradius. > > > > error is : > > > > rlm_mschap: No User-Password configured. Cannot create LM-Password. > > rlm_mschap: No User-Password configured. Cannot create NT-Password. > > rlm_mschap: Told to do MS-CHAPv2 for example with NT-Password > > rlm_mschap: FAILED: No NT/LM-Password. Cannot perform authentication. > > rlm_mschap: FAILED: MS-CHAP2-Response is incorrect > > modcall[authenticate]: module "mschap" returns reject for request 6 > > > > So, In my Openldap i precised a clear password for my users. > > > > Can you help me please > > > > Best regards, > > > > Alexandre. > > > - > List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html > - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
