RE: EAP-PEAP with LDAP for 802.1x authentication

2008-02-28 Thread Ryan
I have installed smbldap-tools and tried to modify existing LDAP records using smbldap-usermod after updating the smbldap.conf and smbldap_bind.conf to connect to the LDAP but I keep getting an error that user cannot be found. Using ldapsearch, syslog shows Feb 28 17:54:42 advert slapd[5679]: con

Re: EAP-PEAP with LDAP for 802.1x authentication

2008-02-25 Thread Alan DeKok
Ryan wrote: > Passwords are currently encrypted in LDAP. In this case, am I correct > to say that I will need to add both nt hash and NT-Password to LDAP > using smb-ldap related tools for it to work with PEAP? You will need to *create* the NT hash or clear-text password on your LDAP server. Th

RE: EAP-PEAP with LDAP for 802.1x authentication

2008-02-25 Thread Ryan
Passwords are currently encrypted in LDAP. In this case, am I correct to say that I will need to add both nt hash and NT-Password to LDAP using smb-ldap related tools for it to work with PEAP? Will samba be required to be configured on my LDAP server? Thanks/Regards, Ryan - List info/subscribe/uns

RE: EAP-PEAP with LDAP for 802.1x authentication

2008-02-25 Thread debug afone
Hello, I use FreeRadius with OpenLDAP to authenticate device using EAP-PEAP and it works fine. The only problem I had was the encrypted password in my LDAP database. I by-passed this problem using clear-text Password in LDAP Database and it works fine. You can also have a look at this : http://de

RE: EAP-PEAP with LDAP for 802.1x authentication

2008-02-25 Thread debug afone
an not work? (Hangjun He) 2. EAP-PEAP with LDAP for 802.1x authentication (Ryan) 3. Re: EAP-PEAP with LDAP for 802.1x authentication (Arjuna Scagnetto) 4. Re: rlm_dbm can not work? ([EMAIL PROTECTED]) 5. Re: EAP-PEAP with LDAP for 802.1x authentication (Ivan Kalik) 6. Re:

Re: EAP-PEAP with LDAP for 802.1x authentication

2008-02-25 Thread Sergio Belkin
2008/2/25, Ryan <[EMAIL PROTECTED]>: > Hi All, > > Understand that it is not possible to authenticate using EAP-PEAP > against OpenLDAP due to encrypted password. Can someone advise on how > exactly OpenLDAP needs be configured so that it can be used in > EAP-PEAP? > > I found out from http://

Re: EAP-PEAP with LDAP for 802.1x authentication

2008-02-25 Thread Ivan Kalik
>Understand that it is not possible to authenticate using EAP-PEAP >against OpenLDAP due to encrypted password. Can someone advise on how >exactly OpenLDAP needs be configured so that it can be used in >EAP-PEAP? > Don't use encrypted password. Or use nt hash and NT-Password. There is nothing to a

Re: EAP-PEAP with LDAP for 802.1x authentication

2008-02-25 Thread Arjuna Scagnetto
reading from http://deployingradius.com/documents/protocols/compatibility.html you can achive that there's no problem to make ldap work with EAP-PEAP, the only thing you must take care is the hashing algorithm for the password. Reading carefully from http://vuksan.com/linux/dot1x/802-1x-LDAP.html