Re: CHAP-Password & LDAP Auth?

Kostas Kalevras <[EMAIL PROTECTED]> wrote: > Do one of the following: > > 1. ... Can you add this to the default 'radiusd.conf.in'? There are enough questions about CHAP and other modules that a template should be in the default configuration file. Also, it may be useful to add an 'authori

RE: CHAP-Password & LDAP Auth?

On Wed, 27 Mar 2002, Michael S. McCollough wrote: > I am usually not a complete idiot, but I cannot get this to work. Using the > settings for radiusd you recommended I cannot get PAP or CHAP to work. PAP > will work if I put ldap back in the authenticate section. I am beyond the > point of embar

Re: CHAP-Password & LDAP Auth?

> > modcall: group authorize returns ok > > rad_check_password: Found Auth-Type ldap > > auth: type "Ldap" > > Why did you tell it to use Auth-Type LDAP? Don't do that! This setting btw is in your 'users' file for those that are wondering.. - List info/subscribe/unsubscribe? See http://

Re: CHAP-Password & LDAP Auth?

"Michael S. McCollough" <[EMAIL PROTECTED]> wrote: > I am usually not a complete idiot, but I cannot get this to work. Using the > settings for radiusd you recommended I cannot get PAP or CHAP to work. PAP > will work if I put ldap back in the authenticate section. That's probably because you'r

RE: CHAP-Password & LDAP Auth?

I am usually not a complete idiot, but I cannot get this to work. Using the settings for radiusd you recommended I cannot get PAP or CHAP to work. PAP will work if I put ldap back in the authenticate section. I am beyond the point of embarrassed now but must keep going. Below are my results: Rad

RE: CHAP-Password & LDAP Auth?

estme2 > gecos: Test Account,Test Inc.,xxx-xxx-, > > # search result > search: 2 > result: 0 Success > > # numResponses: 176 > # numEntries: 175 > [root@radius migration]# > > -Original Message- > From: pavesi [mailto:[EMAIL PROTECTED]] > Sent: Wedne

RE: CHAP-Password & LDAP Auth?

2:15 AM To: [EMAIL PROTECTED] Subject: RE: CHAP-Password & LDAP Auth? >Can some tell me how to override the storing of encrypted passwords? This is a function of how you are, or the routine that enters the user data into your ldap database is defined. Define as crypt, it goes in encrypte

RE: CHAP-Password & LDAP Auth?

AM To: [EMAIL PROTECTED] Subject: RE: CHAP-Password & LDAP Auth? >say I will never have questions again). I have identified my problem >with CHAP as my ldap directory is storing encrypted passwords. I >removed rootdn = {crypt}q2r124lojqslk and replaced it with rootdn = >mypa

RE: CHAP-Password & LDAP Auth?

>Can some tell me how to override the storing of encrypted passwords? This is a function of how you are, or the routine that enters the user data into your ldap database is defined. Define as crypt, it goes in encrypted. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/u

RE: CHAP-Password & LDAP Auth?

>say I will never have questions again). I have identified my problem with >CHAP as my ldap directory is storing encrypted passwords. I removed rootdn = >{crypt}q2r124lojqslk and replaced it with rootdn = mypassword to see if that >would trigger storing passwords in clear text but to no avail. t

RE: CHAP-Password & LDAP Auth?

I have only one more question and my critical elements will be done (not to say I will never have questions again). I have identified my problem with CHAP as my ldap directory is storing encrypted passwords. I removed rootdn = {crypt}q2r124lojqslk and replaced it with rootdn = mypassword to see if

Re: CHAP-Password & LDAP Auth?

"Michael S. McCollough" <[EMAIL PROTECTED]> wrote: > I just went through and tried the alphabet. I must be looking in the wrong > place for documentation. If someone knows where this is documented, I would > appreciate a pointer. doc/variables.txt Also, 'raddb/radiusd.conf' has text saying w

RE: CHAP-Password & LDAP Auth?

4:17 PM To: Michael S. McCollough Cc: '[EMAIL PROTECTED]' Subject: RE: CHAP-Password & LDAP Auth? On Tue, 26 Mar 2002, Michael S. McCollough wrote: > Are you using LDAP? This did not work for me. I did get the realms > working though. Yes, but you _do not_ authenticate off of L

RE: CHAP-Password & LDAP Auth?

dap: User not found): > [[EMAIL PROTECTED]/] (from client MR-Firewall port 0) > > > > -Original Message- > From: Shawn O'Shea [mailto:[EMAIL PROTECTED]] > Sent: Tuesday, March 26, 2002 10:48 AM > To: '[EMAIL PROTECTED]' > Subject: RE: CHAP-Password &

RE: CHAP-Password & LDAP Auth?

tribute "Password" is required for authentication. Cannot > use "CHAP-Password". > > I need CHAP to work with LDAP but would be happy to see it work with > system auth just to know it works. > > -- > Michael > > > -Original Message- > Fro

RE: CHAP-Password & LDAP Auth?

> "CHAP-Password". > > I need CHAP to work with LDAP but would be happy to see it work with system > auth just to know it works. > > -- > Michael > > > -Original Message- > From: Kostas Kalevras [mailto:[EMAIL PROTECTED]] > Sent: Thurs

RE: CHAP-Password & LDAP Auth?

radiusd -X > > rlm_ldap: Attribute "Password" is required for authentication. Cannot use > > "CHAP-Password". > > > > I need CHAP to work with LDAP but would be happy to see it work with system > > auth just to know it works. > > > > -- &g

RE: CHAP-Password & LDAP Auth?

P to work with LDAP but would be happy to see it work with system auth just to know it works. -- Michael -Original Message- From: Kostas Kalevras [mailto:[EMAIL PROTECTED]] Sent: Thursday, March 21, 2002 2:09 PM To: [EMAIL PROTECTED] Subject: Re: CHAP-Password & LDAP Auth? On Thu, 21

Re: CHAP-Password & LDAP Auth?

On Thu, 21 Mar 2002, Mike Cathey wrote: > Chris, > > > Chris Parker wrote: > > At 12:17 PM 3/21/2002 -0500, Mike Cathey wrote: > > > >> Chris, > >> > >> The qmail-ldap () code (actually IIRC it's the > >> auth code) supports 2 menthods of LDAP auth. One method attempts to >

Re: CHAP-Password & LDAP Auth?

Chris, Chris Parker wrote: > At 12:17 PM 3/21/2002 -0500, Mike Cathey wrote: > >> Chris, >> >> The qmail-ldap () code (actually IIRC it's the >> auth code) supports 2 menthods of LDAP auth. One method attempts to >> bind to the directory as the user, which is what it so

Re: CHAP-Password & LDAP Auth?

At 12:17 PM 3/21/2002 -0500, Mike Cathey wrote: >Chris, > >The qmail-ldap () code (actually IIRC it's the auth >code) supports 2 menthods of LDAP auth. One method attempts to bind to >the directory as the user, which is what it sounds like FreeRADIUS >does. The other met

Re: CHAP-Password & LDAP Auth?

Chris, Chris Parker wrote: > At 11:22 AM 3/21/2002 -0500, Shawn O'Shea wrote: > >> > >> > > Wed Mar 20 15:35:57 2002 : Auth: Login incorrect: >> > > [{ed: whatever username -sko}/] (from nas >> > > UNKNOWN-NAS port 0 cli 8475061520) >> > > >> > > If I use just User-Password, this works like a d

Re: CHAP-Password & LDAP Auth?

At 11:22 AM 3/21/2002 -0500, Shawn O'Shea wrote: > > > > > Wed Mar 20 15:35:57 2002 : Auth: Login incorrect: > > > [{ed: whatever username -sko}/] (from nas > > > UNKNOWN-NAS port 0 cli 8475061520) > > > > > > If I use just User-Password, this works like a dream. Any suggetions? > > > > Don't u

Re: CHAP-Password & LDAP Auth?

> > > Wed Mar 20 15:35:57 2002 : Auth: Login incorrect: > > [{ed: whatever username -sko}/] (from nas > > UNKNOWN-NAS port 0 cli 8475061520) > > > > If I use just User-Password, this works like a dream. Any suggetions? > > Don't use CHAP. Ok, well the UUNET docs states that I can use PAP or CH

RE: CHAP-Password & LDAP Auth?

- List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html -Original Message- From: Alan DeKok [mailto:[EMAIL PROTECTED]] Sent: Wednesday, March 20, 2002 4:13 PM To: [EMAIL PROTECTED] Subject: Re: CHAP-Password & LDAP Auth? Shawn O'Shea <[EMAIL PROTECTED]> wrote: &

RE: CHAP-Password & LDAP Auth?

PROTECTED] Subject: Re: CHAP-Password & LDAP Auth? Shawn O'Shea <[EMAIL PROTECTED]> wrote: > My problem is that the packets from them send the password as > CHAP-Password attribute. If I set this in my test data for radclient, > my freeradius 0.5 server says: Wed Mar

Re: CHAP-Password & LDAP Auth?

Shawn O'Shea <[EMAIL PROTECTED]> wrote: > My problem is that the packets from them send the password as > CHAP-Password attribute. If I set this in my test data for radclient, my > freeradius 0.5 server says: > Wed Mar 20 15:35:57 2002 : Auth: rlm_ldap: Attribute "User-Password" is > required for