On Wed, 24 Nov 2004, Chan Min Wai (System Administrator) wrote:
Hello all
I'm using a LDAP (with {Crypt} password -- as I know it is in binary) ldapsearch on this field will show password like
userPassword:: e2NyeXB0fSQxJEFqJDY0NE5rVDFXXXXXXXXXXXXjA=
And I've configure Auth_type :EAP
Don't set Auth-Type, let the server figure it out on it's own.
Can someone really show how to configure freeradius to use LDAP with the crypt password?
Add the ldap module in the authorize section. Configure the password_* configuration directives.
Please and Thank You
the error message is as below: rlm_eap_md5: User-Password is required for EAP-MD5 authentication rlm_eap: Handler failed in EAP/md5 rlm_eap: Failed in EAP select
CLEAR text passwords are required for EAP-MD5. Crypt passwords will NEVER work.
These are the log.
Thank You Chan Min Wai ======================================================================
Waking up in 6 seconds... rad_recv: Access-Request packet from host 192.168.0.18:8021, id=14, length=222 Framed-MTU = 1466 NAS-IP-Address = 192.168.0.18 NAS-Identifier = "CAN_OECTEST" User-Name = "satyam" Service-Type = Framed-User NAS-Port = 81 NAS-Port-Type = Ethernet NAS-Port-Id = "ether6_81" Called-Station-Id = "00-0f-3d-ce-1a-54" Calling-Station-Id = "00-0d-88-6f-48-24" Connect-Info = "CONNECT Ethernet 2Mbps Full duplex" State = 0xb587dbf19b92f081945233fb593914f8 EAP-Message = 0x0202001c0410329795248fa5a101cdb826808fb85fdf73617479616d Message-Authenticator = 0x200d5ca035b6548a3d6b3e4217900dd8 rad_lowerpair: User-Name now 'satyam' rad_rmspace_pair: User-Name now 'satyam' Processing the authorize section of radiusd.conf modcall: entering group authorize for request 5 modcall[authorize]: module "preprocess" returns ok for request 5 modcall[authorize]: module "chap" returns noop for request 5 modcall[authorize]: module "mschap" returns noop for request 5 rlm_realm: No '@' in User-Name = "satyam", looking up realm NULL rlm_realm: No such realm "NULL" modcall[authorize]: module "suffix" returns noop for request 5 rlm_eap: EAP packet type response id 2 length 28 rlm_eap: No EAP Start, assuming it's an on-going EAP conversation modcall[authorize]: module "eap" returns updated for request 5 users: Matched DEFAULT at 152 users: Matched DEFAULT at 171 modcall[authorize]: module "files" returns ok for request 5 modcall: group authorize returns updated for request 5 rad_check_password: Found Auth-Type EAP auth: type "EAP" Processing the authenticate section of radiusd.conf modcall: entering group authenticate for request 5 rlm_eap: Request found, released from the list rlm_eap: EAP/md5 rlm_eap: processing type md5 rlm_eap_md5: User-Password is required for EAP-MD5 authentication rlm_eap: Handler failed in EAP/md5 rlm_eap: Failed in EAP select modcall[authenticate]: module "eap" returns invalid for request 5 modcall: group authenticate returns invalid for request 5 auth: Failed to validate the user. Delaying request 5 for 1 seconds Finished request 5 Going to the next request
-- This message has been scanned for viruses and dangerous content by OCE Sdn Bhd (http://www.ocesb.com.my) MailScanner, and is believed to be clean.
-- Kostas Kalevras Network Operations Center [EMAIL PROTECTED] National Technical University of Athens, Greece Work Phone: +30 210 7721861 'Go back to the shadow' Gandalf
- List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html