[EMAIL PROTECTED]
wrote:
Christian Poessinger [EMAIL PROTECTED] wrote:
I'm really getting confused now ... is it actually possible to use
md5 hashed passwords in a sql backend and doing EAP-TTLS for
authenticating wireless clients?
http://deployingradius.com/documents/protocols
It generally seems to me to be more an EAP problem. When i to on the
shell 'radtest user password md5hash radiusserver 0 secret' it
works fine.
When changing arround the Atrribute field i get wrong Atrribute
errors. But with the User-Password attribute i get that strange
[EMAIL PROTECTED]
wrote:
[EMAIL PROTECTED]
wrote:
Please read the EARLIER messages in the debug log. It's obvious
that the password was NOT read from SQL, so authentication will not
work.
Get the server to read the password from SQL. Debug log WILL SAY
when the appropriate user
Hello,
I'm trying to setup a System to authenticate WLAN users via EAP-TTLS with
md5 crypted passwords, stored in a sql database.
I'm using MySQL as the Backend and it works great when the passwords are
stored in cleartext or UNIX crypt. When i convert the password from crypt to
md5 and change
[EMAIL PROTECTED]
wrote:
Christian Poessinger [EMAIL PROTECTED] wrote:
Well, changing it to MD5-Password results in
In 1.1.x, use User-Password
Changed the content of the SQL Attribute field to 'User-Password' but I
still
get the same error.
---
modcall: leaving group authorize
[EMAIL PROTECTED]
wrote:
Please read the EARLIER messages in the debug log. It's obvious
that the password was NOT read from SQL, so authentication will not
work.
Get the server to read the password from SQL. Debug log WILL SAY
when the appropriate user entry is matched.
Hello,
I'm trying to setup a System to authenticate WLAN users via EAP-TTLS with
md5 crypted passwords, stored in a sql database.
I'm using MySQL as the Backend and it works great when the passwords are
stored in cleartext or UNIX crypt. When i convert the password from crypt to
md5 and change
Christian Poessinger wrote:
Zoltan Ori wrote:
That's the problem everything is uncommented. Comment out ntlm_auth
and with_ntdomain_hack. If you have plain text passwords, you aren't
authenticating to a Windows domain controller, you don't have
windbindd and nmbd running, you don't need want
configuration.
Sorry, my fault :), there was a typo in my last message. I double and
tripplechecked my configs but I don't find the error. Can you please
have a look? I uploaded em to http://helix.mybll.de/raddb
Thanks, Christian Poessinger
-
List info/subscribe/unsubscribe? See http
Zoltan Ori wrote:
On Monday 28 November 2005 12:32, Christian Poessinger wrote:
rlm_eap_peap: Had sent TLV failure, rejecting.
Use the latest available drivers for your wireless adaptor. I've
encountered many strange connectivity issues that are fixed with new
drivers.
If the supplicant
Zoltan Ori wrote:
Are there any other errors in the log? The actual reason for
rejection may come long before that.
Here is the complete log:
Starting - reading configuration files ...
reread_config: reading radiusd.conf
Config: including file: /usr/local/etc/raddb/proxy.conf
Config:
Zoltan Ori wrote:
You have ntlm_auth in your mschap configuration. You don't want that
for LDAP.
You don't need anything NT in that module. The default configuration
had everything commented out but authtype = MS-CHAP. Start with that
and then add what you need.
Nope, there is everything
King, Michael wrote:
Christian, That is what he is saying your problem is, everything is
uncommented
Sorry, with uncommented i ment that all is commented out. Sorry my fault.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Zoltan A. Ori wrote:
On Sunday 27 November 2005 06:52, Christian Poessinger wrote:
Yes, I'm trying to use PEAP, I have configured MS-CHAPv1 as
described in many Howtos.
MS-CHAP V2 is in the Howtos of PEAP that I have read. In any case,
there is no mschap info in the tunnel which
Zoltan A. Ori wrote:
Are you trying to use PEAP/MSCHAP-V2? I don't see any mschapv2 in
your logs.
Yes, I'm trying to use PEAP, I have configured MS-CHAPv1 as described
in many Howtos.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Hello folks, I want to do a setup with a HP Procurve 520wl
Access Point, OpenLDAP and FreeRadius with 802.1x and users
in my LDAP backend. LDAP and Radius works fine, when i do a
radtest user pass radius.domain.tld 0 secret
i get an access accept package back. Now i configured my AP to
use the
Zoltan A. Ori wrote:
On Saturday 26 November 2005 08:50, Christian Poessinger wrote:
rlm_eap_peap: Session established. Decoding tunneled attributes.
rlm_eap_tls: TLS 1.0 Alert [length 0002], fatal access_denied
TLS Alert read:fatal:access denied
rlm_eap_peap: No data inside
Zoltan A. Ori wrote:
I'm not an expert and am often wrong, but I don't think FreeRADIUS is
the problem here. Everything is working up to that point. Does it
break at the same place every time? Double check the NAS and
supplicant configurations.
-
List info/subscribe/unsubscribe? See
18 matches
Mail list logo