Hello,
I am using freeradius with EAP-TTLS + kereros authentication + ldap
authorization.
Everyhtign works but I have this error:
rlm_krb5: verify_krb_v5_tgt: host key not found : key table erntry not found
I checked and the permissions on /etc/krb5.keytab are correct...
anyone has a hint
PEAP authentication will no work with kerberos is it irght ?
I can use EAP-TTLS with kerberos and it works fine but not EAP-PEAP.
is this because PEAP users mschapv2 which si a challenge ?
thanks
Rick
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
the string
DEFAULT Auth-Type = Kerberos
How I can solve this problem ?
I tryed in all possible qays I Cannot disable EAP-TLS with certificates
if I want
EAP-TTLS to work with kerberos and ldap.
might you help me ?
thanks
Rick
Alan DeKok wrote:
"Riccardo.Veraldi" [EMAIL PROTEC
Hello,
I need to authenticate users with EAP-TTLS but I do not
want at hte same time users who has a certificate to being able to use it
to authenticate themself. I have seen that to enable eap-ttls also eap-tls
modue need to be configured in eap.conf
everyhing works with EAP-TTLS, but users can
Actually I used EAP-TTLS with EAP-MD5 inside the tunnel
I think I should try PAP inside hte TLS tunnel isn't it ?
I'll try
Rick
Alan DeKok wrote:
"Riccardo.Veraldi" [EMAIL PROTECTED] wrote:
But I am unable to succesfully authenticate
and I get this error:
rlm_krb5:
Hello,
I could succesfully use EAP-TTLS with kerberos authentication.
my problem now is that in this way also users who have a certificate can
authenticate.
I would like only users with kerberos credentials to being able to
authenticate
in my users file I have
DEFAULT Auth-Type =
6 matches
Mail list logo