Venkata LK Mula wrote:
The 'Code: Access-challenge (11)' frame from server to the
client is showing 'Checksum: 0x921e [incorrect, should be
0x206c]' error.
please find the ethereal log as attached as 'eap-failure1'.
All the packets from your server have that problems; so it's probably a
bug
Alan DeKok wrote:
test100 User-Password == venkat,
No. Use Cleartext-Password := ...
This is given in the example in the FAQ.
I checked the example, but it's not clear to me why it is so.
In my envirnoment I authenticate against an LDAP server, so according to
the ldap.attrmap file the
Maurizio Cimaschi wrote:
I checked the example, but it's not clear to me why it is so.
Because User-Password is the password as entered by the user.
Cleartext-Password is the known good password on the server. They are
*not* the same.
When you do EAP, there is *no* User-Password attribute
Maurizio Cimaschi wrote:
Venkata LK Mula wrote:
The 'Code: Access-challenge (11)' frame from server to the
client is showing 'Checksum: 0x921e [incorrect, should be
0x206c]' error. please find the ethereal log as attached as
'eap-failure1'.
All the packets from your server have that
Alan DeKok wrote:
Because User-Password is the password as entered by the user.
Cleartext-Password is the known good password on the server. They are
*not* the same.
When you do EAP, there is *no* User-Password attribute in the packets.
So doing User-Password == ... is *wrong*. There's
Maurizio Cimaschi wrote:
OK. So the rlm_mschap will look for the internal check-Item
Cleartext-Password and it will use that value for authentication.
From share/freeradius/dictionary.freeradius.internal
Can I ask you to stop quoting the documentation and configuration to
me? I wrote much
Venkata LK Mula wrote:
modsingle[authenticate]: calling mschap (rlm_mschap) for
request 6
rlm_mschap: No Cleartext-Password configured. Cannot create
LM-Password.
rlm_mschap: No Cleartext-Password configured. Cannot create
NT-Password.
rlm_mschap: Told to do MS-CHAPv2 for test100 with
What is in this entry:
users: Matched entry test100 at line 172
Ivan Kalik
Kalik Informatika ISP
Dana 15/8/2008, Venkata LK Mula [EMAIL PROTECTED] piše:
Hi,
This is with reference to the above mentioned subject, we
are trying to authenticate client in PEAP-MSCHAPv2
configuration.
For which
Hi,
We are authenticating the clients via 'users' file.
We are sending the required file inner-tunnel, which we
found in two locations
1. /usr/local/etc/raddb/sites-enabled
2. /usr/local/etc/raddb/sites-available
we are sending the both the files, with SA as suffix for the
file at location
Venkata LK Mula wrote:
We are authenticating the clients via 'users' file.
In your users configuration file user test100 (the one that log
files are referring to) is
test100 Auth-Type := EAP
Cleartext-Password == venkat,
Tunnel-Type = 13,
Tunnel-Medium-Type = 6,
with the modified 'users' file also there is no luck. the
problem remains the same.
The 'Code: Access-challenge (11)' frame from server to the
client is showing 'Checksum: 0x921e [incorrect, should be
0x206c]' error.
please find the ethereal log as attached as 'eap-failure1'.
regards,
Venkat
Maurizio Cimaschi wrote:
I would modify it in this way
test100 User-Password == venkat,
No. Use Cleartext-Password := ...
This is given in the example in the FAQ.
Alan DeKok.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
12 matches
Mail list logo
