I have some phones and switches that only support EAP-MD5 authentication. Can I use EAP-MD5 authentication with Active Directory as an authentication source?
I have this working with NPS. I needed to enable EAP-MD5 in the registry and I had to create a different password policy to save the password using reversible encryption but I got it working in the end. When I run the same authentication against packetfence I get the following error: Mon Jul 22 10:13:31 2019 : Auth: (13018) Login incorrect (eap_md5: Cleartext-Password is required for EAP-MD5 authentication): [asd\switch1] (from client 10.8.4.2 port 31 cli 54:80:28:9c:50:50) Mon Jul 22 10:13:31 2019 : Info: rlm_sql (sql): Closing connection (1665): Hit idle_timeout, was idle for 120 seconds Mon Jul 22 10:13:31 2019 : Info: rlm_sql (sql): Need 1 more connections to reach 10 spares Mon Jul 22 10:13:31 2019 : Info: rlm_sql (sql): Opening additional connection (1667), 1 of 62 pending slots used Mon Jul 22 10:13:31 2019 : [mac:54:80:28:9c:50:50] Rejected user: asd\switch1 Is EAP-MD5 forced to use local authentication? Or am I missing something? Cheers _______________________________________________ PacketFence-users mailing list PacketFence-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/packetfence-users
