Thanks for the help, Phil and Alan. This message is pretty much an
FYI/wrapup for the archives (and for me, since it might be a bit before
I get back to it.)
The users I want to proxy have a fairly programmatic username pattern,
so I think the best thing for me is to expression match in a users f
Hello,
I've been using FreeRADIUS for years to do PEAP/MSCHAP2 WPA
authentications, and it's worked well enough to be a
set-it-and-forget-it solution. I'm currently running 1.0.4, but would
upgrade if it would help me accomplish the goals in this message.
However, changing environments bring me
On Thu, Aug 26, 2004 at 01:37:10PM -0400, Alan DeKok wrote:
> > If I disable with_nt_domain_hack in preprocess, it passes the username
> > on to ntlm_auth as DOMAIN\user, which fails. I would like the mschap
> > module to strip the domain right before it sends it to ntlm_auth. That
> > sounds lik
My problems are similar to a discussion at
http://lists.cistron.nl/archives/freeradius-users/2004/05/frm00026.html
but I didn't catch the resolve from it. I'm running FreeRADIUS 1.0.0
using PEAP and ntlm_auth.
Windows XP supplicant, when set to authenticate off the system, sends
the username as
I'm having a problem with the rlm_passwd and users file. I have a
working configuration with 0.9.3 that's not working under 1.0.0 and I
don't know why. Hopefully, a second set of eyes on the list will catch
this. I'm having this problem with a default radiusd.conf (with just
the passwd blocks ad
On Fri, Jul 30, 2004 at 01:10:49PM -0400, Alan DeKok wrote:
> Dave Mussulman <[EMAIL PROTECTED]> wrote:
> > Inside, where the PEAP/MS-CHAPv2 supplied login is being verified.
>
> To authenticate EAP-MSCHAP, the server ends up calling the MSCHAP module.
>
> The MS-C
On Thu, Jul 29, 2004 at 07:16:49PM -0400, Alan DeKok wrote:
> Dave Mussulman <[EMAIL PROTECTED]> wrote:
> > Okay, I've done that. My authorize section looks like:
> >
> > authorize {
> >
> > preprocess
> > group {
> >
On Wed, Jul 28, 2004 at 06:06:02PM -0400, Alan DeKok wrote:
> Dave Mussulman <[EMAIL PROTECTED]> wrote:
> > Thanks for the pointer. Knock on wood, I think I have things working.
> > This project is really amazing, and it's gotten really easy to setup
> >
On Thu, Jul 22, 2004 at 05:28:52PM -0400, Alan DeKok wrote:
> Dave Mussulman <[EMAIL PROTECTED]> wrote:
> > My question is: what are my authentication options with mschapv2?
>
> Clear-text passwords, or nt passwords.
>
> > I believe I would prefer FreeRADIUS
I've been successful getting a Cisco Aironet 1200 AP to authentication
against a pre-1.0.0 CVS build in my testbed. For testing, my users file
has just had:
daveUser-Password == "dave"
and it worked fine. My question is: what are my authentication options
with mschapv2? I believe I would p
10 matches
Mail list logo
