.
Thanks,
- Original Message -
From: Ivan Kalik t...@kalik.net
To: FreeRadius users mailing list freeradius-users@lists.freeradius.org
Sent: Tuesday, July 21, 2009 6:51:45 PM GMT -05:00 US/Canada Eastern
Subject: Re: Connecting freeRadius to openLDAP
See if there is a way to somehow get
/Canada Eastern
Subject: Re: Connecting freeRadius to openLDAP
Is the easiest thing to do is to monkey with the openLDAP schema and add
some cleartext password attributes?
Yes, you should use radius schema with the radius server. Add the whole
radius schema.
Ivan Kalik
Kalik Informatika ISP
Eric Bourkland wrote:
What would be the best solution since freeRadius currently can't get the
password out of my openLDAP unless it is using PAP, it gets the password in
the request via PEAP.
PEAP doesn't work that way. Blame Microsoft.
I would like to avoid having to tell everyone
The docs do tend to gloss over the bits about how to get the needed password
into your LDAP store (besides just saying cleartext or LN/NT). First, check
that the user you have setup for ldap to use has auth (not read) access to the
userPassword attribute, which I think is true since you said
I'm relatively new to freeRadius and I'm getting very frustrated trying to get
it to Authenticate with my openLDAP, I'm sure it is a small configuration
change but I can't find where it is and I'm beating my head against a wall.
FreeRadius does not just work as the instructions imply.
All I
Eric Bourkland wrote:
I can attach any of my config files but what I have done is rebuilt a
whole new server RHEL4.7-ES, with freeRadius v2.1.6 installed. with
In all probability, your LDAP database either:
1. Does not contain the plaintext password, or NT/LM hash.
2. Does not give the
to it with open passwords.
Thanks,
- Original Message -
From: Phil Mayers p.may...@imperial.ac.uk
To: FreeRadius users mailing list freeradius-users@lists.freeradius.org
Sent: Tuesday, July 21, 2009 12:35:42 PM GMT -05:00 US/Canada Eastern
Subject: Re: Connecting freeRadius to openLDAP
Eric
Yes, I am trying to do MSCHAPv2 from the laptop.
If the below is true why am I able to do a successful Radtest user
password server 0 secret on the radius server?
Because pap works with almost any encryption. Also, ldap bind as user
authentication will work with pap request in case that ldap
-
From: Ivan Kalik t...@kalik.net
To: FreeRadius users mailing list freeradius-users@lists.freeradius.org
Sent: Tue, 21 Jul 2009 12:33:13 -0500 (CDT)
Subject: Re: Connecting freeRadius to openLDAP
Yes, I am trying to do MSCHAPv2 from the laptop.
If the below is true why am I able to do
Eric Bourkland wrote:
below is my debug file. The interesting thing is when I am trying to do an
ldap search it doesn't list the password attribute
Are you using Active Directory? If so, please understand that it is
NOT an LDAP server.
You will need to use Samba to do authentication
Sent: Tuesday, July 21, 2009 4:21:57 PM GMT -05:00 US/Canada Eastern
Subject: Re: Connecting freeRadius to openLDAP
Eric Bourkland wrote:
below is my debug file. The interesting thing is when I am trying to do an
ldap search it doesn't list the password attribute
Are you using Active
See if there is a way to somehow get an innter tunnel to use ttls/pap to
connect to the ldap server and perfrom authentication that way since it
appears that PAP authentication does work. But I don't know if there can
be a change in crypt for the authentication from the client which uses
12 matches
Mail list logo
