Thing is that, colleague has a software, developed by his company, I cannot
disclose which one, that can test eap-gtc,and that works. And the thing is,
when he tries to connect to freeradius server I set up, he cannot auth with
domain username and pw. He can auth with EAP-TLS, EAP-TTLS with PAP,
EA
Hi Ivan,
All of this is for testing purposes. So, I just need all of those methods to
work, if it can't work with domain, then cleartext password will be fine.
Can you give me some more info about seting up TTLS-GTC, testing is being
done on Windows XP. Also, for EAP-TTLS with chap, enabling user
Ok, that works, many thanks for this :)
What's left for me, I would like to authenticate users in domain with LEAP
and TTLS-GTC. Also, what's needed to make EAP-TTLS with CHAP work? I know
you can't use ntlm_auth for that, so what do I need to put inside users
file? Will creating test user, for ex
Ah yes, now it started, thanks a lot. Will see if now EAP-TTLS with PAP
works.
Thanks a lot mate, you saved my life (for now :)
Cheers,
Petar
On Fri, Jun 26, 2009 at 11:38, Ivan Kalik wrote:
> > Similar error, again when the server is starting
> >
> > Module: Linked to module rlm_files
> > M
Yes, I reverted authenticate part to
Auth-Type PAP {
pap
}
On Fri, Jun 26, 2009 at 11:26, Ivan Kalik wrote:
> > Sorry, I just c/p that line from other link
> >
> > here is mine
> >
> > exec ntlm_auth_pap {
> > wait = yes
> > input_pairs = request
> > shell_excape =
Similar error, again when the server is starting
Module: Linked to module rlm_files
Module: Instantiating files
files {
usersfile = "/etc/freeradius/users"
acctusersfile = "/etc/freeradius/acct_users"
preproxy_usersfile = "/etc/freeradius/preproxy_users"
compat = "no"
}
/etc/f
On Fri, Jun 26, 2009 at 9:57 AM, Petar Marinkovic wrote:
> Sorry, I just c/p that line from other link
>
> here is mine
>
> exec ntlm_auth_pap {
> wait = yes
> input_pairs = request
> shell_excape = yes
> output = none
> program = "/usr/bin/ntlm_auth --requ
> Sorry, I just c/p that line from other link
>
> here is mine
>
> exec ntlm_auth_pap {
> wait = yes
> input_pairs = request
> shell_excape = yes
> output = none
> program = "/usr/bin/ntlm_auth --request-nt-key --domain=EXCHANGE
> --username=%{mschap:User-Nam
In eap.conf, for eap-ttls there is a line
virtual_server = "inner-tunnel"
I put this part of your code in /etc/freeradius/sites-enabled/inner-tunnel
and /etc/freeradius/sites-available/inner-tunnel files, like this
Auth-Type PAP
{
pap
}
if(!control:Auth-Type) {
update control {
Sorry, I just c/p that line from other link
here is mine
exec ntlm_auth_pap {
wait = yes
input_pairs = request
shell_excape = yes
output = none
program = "/usr/bin/ntlm_auth --request-nt-key --domain=EXCHANGE
--username=%{mschap:User-Name} --password=%{User
> First, thanks Alan for your help, I managed to make it work with AD. Now I
> want to try to test to make EAP-TTLS with PAP to authenticate users in
> domain. I saw this link
> http://lists.freeradius.org/mailman/htdig/freeradius-users/2008-March/msg00417.html
>
> So I added following lines to mod
Hi,
> exec ntlm_auth_pap {
> wait = yes
> input_pairs = request
> shell_escape = yes
> output = none
>
> program = "/path/to/ntlm_auth --username=%{User-Name}
> --domain=EXCHANGE --password=%{User-Password}"
12 matches
Mail list logo