Paul Dugas wrote: > On Mon, Aug 16, 2010 at 5:02 PM, Alan DeKok <al...@deployingradius.com> wrote: >> Use PEAP. Ensure passwords are in a form compatible with PEAP: > > My LDAP directory contains NT, LM, and SSHA passwords but not > clear-text so, if I'm following correctly, I need to look into using > ntlm_auth.
No. I have no idea why you concluded that. FreeRADIUS needs a password for authentication. That's it. > I've actually already gotten some of this working. Following the > one-step-at-a-time advice, I've gotten PEAP working with PAP in the > inner tunnel. The FR2 package is far simpler than when I originally > set this up with FR1. Yup. If you have the LDAP module listed in the "inner-tunnel", then you're well on your way to getting it all to work. Alan DeKok. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html