Hello,
what exactly ist your problem?
a) Do you want to know how to configure a web administration GUI (phpldapadmin)
for your LDAP server? Then your problem is purly related to LDAP server, PHP
and a web server. Hence, this is Thermometer wrong mailing list to ask for
advice.
b) Or do you
It´s work.
I write into the ldap.attrmap:
checkItem Cleartext-Password userPassword
In the sites-available/default, I comment out everything except ldap, eap
And I activate LDAP in the sites-available/inner-tunnel authorize.
Thank you for help.
-
List info/subscribe/unsubscribe? See
Alan DeKok wrote:
.. it is impossible to use PEAP with SHA passwords.
http://deployingradius.com/documents/protocols/compatibility.html
I saved the LDAP password clear-text now. It don’t work either. Same radiusd -X
log as before.
-
List info/subscribe/unsubscribe? See
On 07/19/2010 06:19 AM, Lionne Stangier wrote:
Alan DeKok wrote:
.. it is impossible to use PEAP with SHA passwords.
http://deployingradius.com/documents/protocols/compatibility.html
I saved the LDAP password clear-text now. It don’t work either. Same radiusd -X
log as before.
If it's
On 07/19/2010 07:01 AM, John Dennis wrote:
On 07/19/2010 06:19 AM, Lionne Stangier wrote:
Alan DeKok wrote:
.. it is impossible to use PEAP with SHA passwords.
http://deployingradius.com/documents/protocols/compatibility.html
I saved the LDAP password clear-text now. It don’t work either.
Here are a couple of things to check which often trip folks up:
1) is the userPassword attribute defined in $RADDB/ldap.attrmap ?
By default it isn't (I've never understood why it isn't) You should have
a line in that file which looks like this:
checkItem Cleartext-Password
Lionne Stangier wrote:
I used ldapsearch -h ldap -b dc=allesklar,dc=com -x uid=lionne.stangier
I get the userPassword but encoded :(
as... what?
Is it a secret?
Do you want people to help you?
Alan DeKok.
-
List info/subscribe/unsubscribe? See
John Dennis wrote:
1) is the userPassword attribute defined in $RADDB/ldap.attrmap ?
By default it isn't (I've never understood why it isn't)
This goes back to 0.x. The ldap module used to do authentication
itself, and handled passwords via C code. In 2.1, this is deprecated.
You should
as... what?
Is it a secret?
Sorry I don't know as what. On the LDAP Server it's clear text. Before it was
md5, maybe it's still md5. I can´t change any settings on the LDAP Server a
other admin in our company changed something for me.
I will set up a own test LDAP now.
-
List
Lionne Stangier wrote:
as... what?
Is it a secret?
Sorry I don't know as what.
Maybe someone on this list can help you, if you're willing to share
more information?
Or... you can keep posting it doesn't work.
On the LDAP Server it's clear text. Before it was md5, maybe it's
still
On 07/19/2010 08:17 AM, Lionne Stangier wrote:
Here are a couple of things to check which often trip folks up:
1) is the userPassword attribute defined in $RADDB/ldap.attrmap ?
By default it isn't (I've never understood why it isn't) You should have
a line in that file which looks like this:
Is there a double colon (::) after the userPassword attribute name in
the ldapsearch result? (e.g. userPassword:: x). If so
that means the attribute value was binary (had some non-ascii printing
character in it) so it was base64 encoded. This is a bit obscure, I
got
On 07/19/2010 10:13 AM, Lionne Stangier wrote:
Is there a double colon (::) after the userPassword attribute name in
the ldapsearch result? (e.g. userPassword:: x). If so
that means the attribute value was binary (had some non-ascii printing
character in it) so it was base64
Lionne Stangier wrote:
Yes the password it´s like you describe. I tested different forms in the
ldap.attrmap now. Same trouble as before.
Then the problem is the same as before.
1) make sure that FreeRADIUS can read the passwords from LDAP. Right
now, it can't.
2) make sure that the
On 07/19/2010 10:20 AM, Lionne Stangier wrote in a private email:
Thank you.
I have to talk with the LDAP Admin. He should save the password clear text now.
[ Replying to the list even though this was a private email because I
think this is important information ]
I just also want to make
15 matches
Mail list logo
