Hi, > Alan, I didn't find any option for the mschapv2 problem in your web page. > > Unencrypt ldap passwords is not a smart solution. > > It seems that windos xp client only accept mschapv2 or TLS to authenticate, > if a use TLS, I cannot use ldap because only the client certificate is used > to authenticate. > > In my network, I need to authenticate with the mail passwords stored in ldap. > > Server: red hat with freeradius > Client: windows xp sp2 > > Protocols: PEAP + MSCHAPv2 + LDAP > > I don't use TLS because it only uses certificates to authenticate. > > Do you have any suggestion???
store the NThash in the LDAP? i havent tried this but should work alan - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
