"thomas hahusseau" <[EMAIL PROTECTED]> wrote:
> First : If I uncomment "eap" in authorize section of radiusd.conf :
Which you MUST do, or EAP doesn't work.
> rlm_eap_peap: Had sent TLV failure, rejecting.
Why are you insisting on looking at only a portion of the
debug output? Look P
I dont understand why it doesn't work , Password are in clear in LDAP
base , the only thing that i want is freeradius recieve login and
password form an PEAP (Mschapv2) authentification request and compare
it from password and login stocked in LDAP database if it's matched so
allow the access.
her
"thomas hahusseau" <[EMAIL PROTECTED]> wrote:
> modcall: entering group Auth-Type for request 6
> rlm_mschap: No User-Password configured. Cannot create LM-Password.
> rlm_mschap: No User-Password configured. Cannot create NT-Password.
This means that the server has no clear-text password.
Yes i use PEAP/MsChapv2 , and password in OpenLDAP are stocked in clear
mode , but there is a really strange eror while I try an
autothentication via EAP-PEAP (MSCHAPv2) here is the output of
Freeradius :
lm_ldap: checking if remote access for test is allowed by uid
rlm_ldap: looking for check ite
I assume by PEAP, you mean the most-often-seen PEAP/EAP-MSCHAPv2. In
this case, MD5 is not involved anywhere. The passwords are hashed
differently. As such, you must either have an NT hashed password
(which is actually a unicode-encoded MD4 hash of the password) or a
cleartext password i
Hello,
I would like to use PEAP to perfome authentication of wlan users , I
choose PEAP because Users and Passwords are in an LDAP Server
(OPEN-LDAP). According to me PEAP works like this :
Phase 1 :: TLS handshake the server authenticate to the client as a trusted radius serveur and a cipher tun
6 matches
Mail list logo
