DialUp Admin And Crypt Passwords

2005-09-04 Thread Geoffrey Cauchi
Hi I got the Freeradius version 1.0.4 setup with MySql. It is all working fine. However, when creating users through the dialup admin, the password is stored in the database without the salt key for md5, and this is causing the users' access request to be rejected. If the password is created

[PEAP] Authenticate aigainst OpenLDAP Directory with NT Hashes

2005-09-04 Thread Sebastian Mauer
Hello there, I just researched a little bit in the freeradius-users list and found out that there have to be clear passwords in the LDAP Direcotry to get FreeRADIUS to work with LDAP. However I think it's not very secure to store the passwords in clear in the Directory, even if there are ACLs in

Re: SQL logging options

2005-09-04 Thread bendowling
That's exactly what I was after, Thanks alot. Ben -- Original Message -- Date: Sat, 3 Sep 2005 20:18:19 +0200 From: Nicolas Baradakis [EMAIL PROTECTED] To: FreeRadius users mailing list freeradius-users@lists.freeradius.org Subject: Re: SQL logging options Reply-To: FreeRadius users mailing list

Re: [PEAP] Authenticate aigainst OpenLDAP Directory with NT Hashes

2005-09-04 Thread Alan DeKok
Sebastian Mauer [EMAIL PROTECTED] wrote: I just researched a little bit in the freeradius-users list and found out that there have to be clear passwords in the LDAP Direcotry to get FreeRADIUS to work with LDAP. However I think it's not very secure to store the passwords in clear in the

Re: Windows XP supplicant limitation ?

2005-09-04 Thread A . L . M . Buxey
Hi, - user auth after the doain controler has accepted logon. Does anybody know if the windows XP supplicant is able to do this ? Do I need a better supplicant ? aegis? secureW2? Funk Odissey ? i believe it wont do anything useful or multifunctional like you require. a good option would be to

RE: DialUp Admin And Crypt Passwords

2005-09-04 Thread Geoffrey Cauchi
Hi Further to my previous post, I managed to get around this problem By default, md5 passwords are generated without the key appended. To solve: Change the file /usr/local/dialup_admin/lib/crypt/md5.php3 from ?php function da_encrypt($passwd) { return md5($passwd); } ? with the

Re: [PEAP] Authenticate aigainst OpenLDAP Directory with NT Hashes

2005-09-04 Thread Vladimir Vuksan
Sebastian Mauer wrote: Is it really not possible to do PEAP (w. MSCHAPv2) when I have NT-Hashes in the Directory? My target is to use LDAP as authentication source for my UNIX Workstations (trough pam_ldap), my Windows Workstations (trough Samba accessing LDAP, therefor I have the NT-Hashes in