Sigh. No. There are no packets in that debug. How do you expect people to read
a debug unless it contains an authentication attempt?
> ... adding new socket proxy address * port 51195
>Listening on authentication address * port 1812
>Listening on accounting address * port 1813
>Listening on comma
> Date: Fri, 28 Dec 2012 10:46:45 +0100
> From: oliv...@heliosnet.org
> To: freeradius-users@lists.freeradius.org
> Subject: Re: AP> FR> LDAP authentication reject
>
> On 28.12.2012 09:38, Thanakorn Rattanatikul wrote:
> > Still unable to connect.
> > Do
Thanakorn Rattanatikul wrote:
> In LDAP server , for user "sun" , store password in clear-text in this test.
No, it doesn't.
Or, it's not available.
Or the user isn't found.
Read the debug log. Look for anything related to LDAP. It isn't hard:
[ldap] performing search in ou=guest,d
On 28.12.2012 09:38, Thanakorn Rattanatikul wrote:
> Still unable to connect.
> Do you have any configuration files for connecting with LDAP form AP>
> FR> LDAP ? I tried every way but nothing works.
Send a full output of freeradius -X
--
Olivier Beytrison
Network & Security Engineer, HES-
Still unable to connect.
Do you have any configuration files for connecting with LDAP form AP> FR> LDAP
? I tried every way but nothing works.
Thank you very much for your time and help.
thanakorn
-
List info/subscribe/unsubscribe? See http://www.f
On 28.12.2012 08:39, Thanakorn Rattanatikul wrote:
> In LDAP server , for user "sun" , store password in clear-text in this test
So if you have a clear-text password in the ldap, use the ldap
attribute-map to add it in the control list. Looking at the logs I guess
you are running version 2.x, then
In LDAP server , for user "sun" , store password in clear-text in this test.
Thank you very much for your time and help.
thanakorn
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
On 28.12.2012 06:17, Thanakorn Rattanatikul wrote:
> I'm trying to setup the server to authenticate using LDAP. I'm having
> some problem and hope to get some help from the list.
>
> I'm trying to setup AP->FR->LDAP. FreeRadius is new installation on
> CentOS. LDAP is Sun Java System Directory Ser
ext:
http://freeradius.1045715.n5.nabble.com/AP-FR-LDAP-authentication-tp5572785p5578081.html
Sent from the FreeRadius - User mailing list archive at Nabble.com.-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
igure out how to change this configuration now.
My backend is LDAP. Maybe I should change the backend system to AD.
Thank you all for your time and help.
Best,
Julie Chen
--
View this message in context:
http://freeradius.1045715.n5.nabble.com/AP-FR-LDAP-authentication-tp5572785p5577782.ht
Hi,
> I'm new to FreeRadius and trying to setup the server to authenticate using
> LDAP. I'm having some problem and hope to get some help from the list.
if your clients are doing EAP-TTLS/PAP then this will work - the PAP
module can deal the requirements.
if, as i suspect, you are using PEAP (
Julie Chen wrote:
> Yes, I understand that.
Apparently you don't.
> But I'm having little problem figure out right configuration.
What part of "impossible" is unclear?
> Would someone please advice on the configuration file?
There is no configuration to change.
You need to store the
Fajar A. Nugraha wrote:
> I'd start with reading this:
> http://wiki.freeradius.org/Protocol%20Compatibility
> (or the original page in deplyingradius.com).
Please don't copy my content into the Wiki. The deployingradius.com
link has been around for years. It's the authoritative source. Copy
On Sat, Mar 17, 2012 at 11:54 AM, Julie Chen wrote:
>
> Yes, I understand that. But I'm having little problem figure out right
> configuration. Would someone please advice on the configuration file?
I'd start with reading this: http://wiki.freeradius.org/Protocol%20Compatibility
(or the original
f of
Alan DeKok [al...@deployingradius.com]
Sent: Friday, March 16, 2012 8:02 PM
To: FreeRadius users mailing list
Subject: Re: AP->FR->LDAP authentication
Julie wrote:
> The problem is when I try to authenticate through AP. The debug log shows
> Failed to authenticate the user
Julie wrote:
> The problem is when I try to authenticate through AP. The debug log shows
> Failed to authenticate the user. here is the log file.
...
> [mschap] Found MS-CHAP attributes. Setting 'Auth-Type = mschap'
...
> [ldap] userPassword -> Password-With-Header ==
> "{crypt}$1$svVH/H.V$S02t
ct
[eap] Handler failed in EAP/ttls
[eap] Failed in EAP select
++[eap] returns invalid
Failed to authenticate the user.
Using Post-Auth-Type Reject
# Executing group from file /etc/raddb/sites-enabled/default
+- entering group REJECT {...}
Thank you very much for your time and help.
B
17 matches
Mail list logo