reading from http://deployingradius.com/documents/protocols/compatibility.html
you can achive that there's no problem to make ldap work with
EAP-PEAP, the only thing you must take care is the hashing algorithm
for the password.
Reading carefully from
network, mac xp. I wouldn't mind using plain text passwords if that could
be forced. The only configurations that get close to working get as far as
machapv2, then fail because of no nt/lm password. If I could use the
password from my ldap connection which seems to be working nicely,
Hi all,
i can't understand why if I run radiusd as nobody (user and group) it
can't access the directory that contains the certificates for eap.
Can someone help me, plz.
thanks in advance
Arjuna Scagnetto
begin:vcard
fn:Arjuna Scagnetto
n:Scagnetto;Arjuna
org:Universita' degli Studi di Trieste
with these permissions it doesn't work. (radiusd runned as nobody)
TestCerts/ drw-r-xr-x nobody nobody
cert.pem-rw-r-xr-x nobody nobody
cacert.pem -rw-r-xr-x nobody nobody
with these permissions it works. (radiusd runned as nobody)
TestCerts/
I've take a look at your radius.conf.
I can only say that i have a Radius+LDAP+EAP-ttls (pap)
configuratio working in authorize section
ldap is uncommnet in authenticate section
Auth-Type LDAP {
ldap
} is uncommented, i have no ldap_1x modules enabled.
this way it works with crypt (md5)
for answering
Arjuna Scagnetto
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Arjuna Scagnetto wrote:
can someone tell me a good tutorial about making work freeradius with
ldap and peap on a 802.1x architecture ?
Get LDAP working with PAP authentication, but NOT using ldap bind.
Get PEAP working with passwords in the users file.
Try PEAP with a user
O/H Alan DeKok ??:
Arjuna Scagnetto wrote:
...
PEAP with user whose password is in LDAP
...
userPAssword: {SSHA}tymetcetcetc
This WILL NOT WORK. See:
http://deployingradius.com/documents/protocols/compatibility.html
use clear-text passwords in LDAP
can someone tell me a good tutorial about making work freeradius with
ldap and peap on a 802.1x architecture ?
For the moment my freeradius server dies with a Segmentation Fault, i
think it's caused by a misunderstanding between peap and ldap but i'm
not sure.
radius.conf{
ldap {
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
I think the Auth-Type value is the problem, try to use an entry like
username User-Password = pass
without explicit the Auth-Type value.
but if it works i do not realy understand why it works :)
i'm a freeradius newbie too.
arjuna
-BEGIN
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Is it possible to send all logs to the mysql directly from freeradius?
thanks
Arjuna Scagnetto
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.2.6 (GNU/Linux)
iD8DBQFF2JKk7hNGJisFPxQRAjd1AJ4x0EjKuzIcLCDp/g1qSrUimUiorwCeMSaF
7Z8uGN4FD2HsjMwov6C/6s0
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
hi everyone,
i'm trying to make freeradius works with the eap-tls and ttls, but i
can't go so far.
Can someone tell me a link or an updated howto or a book to be bought,
to learn how to make the certificates, i need just some references, i've
found
12 matches
Mail list logo