Re: freeradius 2.0.4 and peap
Hi, > Ivan Kalik escribió: >> You have experlty deleted all the relevant information from the debug and >> your configuration. Post the complete debug. >> > I solved the problem commenting the line >virtual_server = "inner-tunnel" > in the peap section of eap.conf which means you are not using the inner-tunnel virtual server - which is the best way of doing things. ensure that the inner-tunnel config is in $raddb/sites-enabled directory so that the server can use it...and then USE it alan - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: freeradius 2.0.4 and peap
Ivan Kalik escribió: You have experlty deleted all the relevant information from the debug and your configuration. Post the complete debug. I solved the problem commenting the line virtual_server = "inner-tunnel" in the peap section of eap.conf -- - Manuel Sanchez Cuenca Departamento de Ingenieria de la Informacion y las Comunicaciones Departamento de Ingeniería y Tecnología de Computadores Facultad de Informatica. Universidad de Murcia Campus de Espinardo - 30080 Murcia (SPAIN) Tel.: +34-968-364644Fax: +34-968-364151 email: [EMAIL PROTECTED] | [EMAIL PROTECTED] url: http://webs.um.es/manuelsc - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: freeradius 2.0.4 and peap
You have experlty deleted all the relevant information from the debug and your configuration. Post the complete debug. Ivan Kalik Kalik Informatika ISP Dana 2/5/2008, "Manuel Sánchez Cuenca" <[EMAIL PROTECTED]> piše: >Hello all, > >I have installed freeradius 2.0.4 and now I'm trying to configure peap. > >When I try to connect using a Windows XP laptop, the server rejects the >user. > >The log shows this information: > > rlm_eap: processing type mschapv2 >+- entering group MS-CHAP > rlm_mschap: No Cleartext-Password configured. Cannot create LM-Password. > rlm_mschap: No Cleartext-Password configured. Cannot create NT-Password. > rlm_mschap: Told to do MS-CHAPv2 for lolo with NT-Password > rlm_mschap: FAILED: No NT/LM-Password. Cannot perform authentication. > rlm_mschap: FAILED: MS-CHAP2-Response is incorrect >++[mschap] returns reject > rlm_eap: Freeing handler >++[eap] returns reject >auth: Failed to validate the user. >Login incorrect: [lolo/] (from client dame-ap port >0 via TLS tunnel) > PEAP: Tunneled authentication was rejected. > > >The configuration files are the following: > >* eap.conf > >eap { > default_eap_type = peap > . . . > tls { >private_key_password = srvpwd >private_key_file = ${certdir}/server.pem >certificate_file = ${certdir}/server.pem >CA_file = ${cadir}/ca.pem >. . . > } > peap { >default_eap_type = mschapv2 >copy_request_to_tunnel = no >use_tunneled_reply = no >virtual_server = "inner-tunnel" >} >mschapv2 { >} > > >* users > lolo Cleartext-Password := "password" > >* sites-enabled/default > authorize { > eap { > ok = return > } > ... > } > authenticate { > eap > ... > } > ... > >Can anybody help me? > >Thanks in advance. > >-- >- >Manuel Sanchez Cuenca >Departamento de Ingenieria de la Informacion y las Comunicaciones >Departamento de Ingeniería y Tecnología de Computadores >Facultad de Informatica. Universidad de Murcia >Campus de Espinardo - 30080 Murcia (SPAIN) >Tel.: +34-968-364644Fax: +34-968-364151 >email: [EMAIL PROTECTED] | [EMAIL PROTECTED] >url: http://webs.um.es/manuelsc >- >List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html > > - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
freeradius 2.0.4 and peap
Hello all, I have installed freeradius 2.0.4 and now I'm trying to configure peap. When I try to connect using a Windows XP laptop, the server rejects the user. The log shows this information: rlm_eap: processing type mschapv2 +- entering group MS-CHAP rlm_mschap: No Cleartext-Password configured. Cannot create LM-Password. rlm_mschap: No Cleartext-Password configured. Cannot create NT-Password. rlm_mschap: Told to do MS-CHAPv2 for lolo with NT-Password rlm_mschap: FAILED: No NT/LM-Password. Cannot perform authentication. rlm_mschap: FAILED: MS-CHAP2-Response is incorrect ++[mschap] returns reject rlm_eap: Freeing handler ++[eap] returns reject auth: Failed to validate the user. Login incorrect: [lolo/] (from client dame-ap port 0 via TLS tunnel) PEAP: Tunneled authentication was rejected. The configuration files are the following: * eap.conf eap { default_eap_type = peap . . . tls { private_key_password = srvpwd private_key_file = ${certdir}/server.pem certificate_file = ${certdir}/server.pem CA_file = ${cadir}/ca.pem . . . } peap { default_eap_type = mschapv2 copy_request_to_tunnel = no use_tunneled_reply = no virtual_server = "inner-tunnel" } mschapv2 { } * users lolo Cleartext-Password := "password" * sites-enabled/default authorize { eap { ok = return } ... } authenticate { eap ... } ... Can anybody help me? Thanks in advance. -- - Manuel Sanchez Cuenca Departamento de Ingenieria de la Informacion y las Comunicaciones Departamento de Ingeniería y Tecnología de Computadores Facultad de Informatica. Universidad de Murcia Campus de Espinardo - 30080 Murcia (SPAIN) Tel.: +34-968-364644Fax: +34-968-364151 email: [EMAIL PROTECTED] | [EMAIL PROTECTED] url: http://webs.um.es/manuelsc - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html