Re: help with freeradius 0.9.0, Active Directory, and MS-CHAPv2

Sean Perry [EMAIL PROTECTED] wrote: I am trying to setup a Linux VPN. Most of the pieces are now in place. I am trying to authenticate against radius which in turn will authenticate against our existing Active Directory server. People have done this. To a certain extent, AD is just

Re: help with freeradius 0.9.0, Active Directory, and MS-CHAPv2

Alan DeKok wrote: Sean Perry [EMAIL PROTECTED] wrote: I am trying to setup a Linux VPN. Most of the pieces are now in place. I am trying to authenticate against radius which in turn will authenticate against our existing Active Directory server. People have done this. To a certain

Re: help with freeradius 0.9.0, Active Directory, and MS-CHAPv2

Sean Perry [EMAIL PROTECTED] wrote: Not with CHAP. AD doesn't allow you to look at the users clear-text passwords, so CHAP is impossible. I have solved this in other cases by using the password to rebind as the user. If the bind fails the password is incorrect. What I have not seen

Re: help with freeradius 0.9.0, Active Directory, and MS-CHAPv2

Alan DeKok wrote: Sean Perry [EMAIL PROTECTED] wrote: Not with CHAP. AD doesn't allow you to look at the users clear-text passwords, so CHAP is impossible. I have solved this in other cases by using the password to rebind as the user. If the bind fails the password is incorrect. What I have

RE: help with freeradius 0.9.0, Active Directory, and MS-CHAPv2

From: Alan DeKok Sent: Thursday, 4 September 2003 11:46 PM Sean Perry [EMAIL PROTECTED] wrote: I am trying to setup a Linux VPN. Most of the pieces are now in place. I am trying to authenticate against radius which in turn will authenticate against our existing Active Directory

Re: help with freeradius 0.9.0, Active Directory, and MS-CHAPv2

Paul Hampson wrote: Yet, somehow, IAS does CHAP against AD. Is anyone willing to bet *against* the idea that Microsoft has one API for customers, and another, better API for themselves? So surely you could proxy CHAP requests to IAS, and authenticate other requests using the superior powers of

help with freeradius 0.9.0, Active Directory, and MS-CHAPv2

I am trying to setup a Linux VPN. Most of the pieces are now in place. I am trying to authenticate against radius which in turn will authenticate against our existing Active Directory server. Looking through the archives I see several people try but no real responses. Ron Wahler claims to

Re: help with freeradius 0.9.0, Active Directory, and MS-CHAPv2

Sean Perry wrote: I am trying to setup a Linux VPN. Most of the pieces are now in place. I am trying to authenticate against radius which in turn will authenticate against our existing Active Directory server. Looking through the archives I see several people try but no real responses. Ron