so mschap is working again, but now radius stops processing at sending the
access-challenge to the accesspoint. it should not be a certificate problem,
since the error is happening with all devices (win, mac, mobiles,..). proxy
requests to another radius are working fine.
andy ideas?
i am
update: not working again. 4 or 5 requests were working, now it is the same
problem again.
stopping at the access-challenge..
-euro
On Thu, Apr 8, 2010 at 8:36 AM, mr typo euroregist...@gmail.com wrote:
so mschap is working again, but now radius stops processing at sending the
mr typo wrote:
update: not working again. 4 or 5 requests were working, now it is the
same problem again.
stopping at the access-challenge..
Blame the Windows PC. It doesn't like the certificates.
Remember: RADIUS is a protocol that RESPONDS to REQUESTS. If there
are no requests, the
humm, even when its not working with a mac or other devices?
On Thu, Apr 8, 2010 at 8:49 AM, Alan DeKok al...@deployingradius.comwrote:
mr typo wrote:
update: not working again. 4 or 5 requests were working, now it is the
same problem again.
stopping at the access-challenge..
Blame
mr typo wrote:
humm, even when its not working with a mac or other devices?
As I said... the client sends requests. If it doesn't, the client is
choosing to stop.
Work through my EAP deployment howto: http://deployingradius.com.
Then the Active Directory Howto. At some point, it will
mr typo wrote:
it works up to configuring freeradius to use ntml_auth for ms-chap
password is double checked, everything else should be find. wbinfo
works, ntlm_auth works, plain_ntlm works, certificates creates with
makefile (so with xpextensions).
it is really strange..
OK. It's a
there was a bug with NT_STATUS_PIPE_DISCONNECTED from last year in the
samba. i think i have tried 2 or 3 stable versions right now.
ill gonna compile the latest from svn tree and report back after a view
tests.
-euro
On Thu, Apr 8, 2010 at 4:03 PM, Alan DeKok al...@deployingradius.comwrote:
hello,
i have added the with_nt_domain_hack in the mschapv2 section of eap.conf
mschapv2 {
with_ntdomain_hack = yes
}
with this change i am getting the following in debug log:
[eap] processing type mschapv2
[mschapv2] +- entering group MS-CHAP {...}
hey all,
we do have a freeradius server authenticating with ntml_auth against a win
2008r2 server. this was working for several months but for 2 weeks now the
authentication does not work anymore.
authenticating on the command line with ntlm_auth is still working:
[r...@wlan ~]# ntlm_auth
mr typo wrote:
[mschap] Told to do MS-CHAPv2 for asart...@fh-salzburg.ac.at
mailto:asart...@fh-salzburg.ac.at with NT-Password
[mschap] FAILED: No NT/LM-Password. Cannot perform authentication.
You forced MS-CHAP (i.e. non-ntlm_auth) authentication in FreeRADIUS.
Fix that.
Alan DeKok.
-
ill try that. it is just strange that it worked until now..
in the module mschap i am doing a ntlm_auth request. that is how the
authenticate sections looks like now.
authenticate {
Auth-Type MS-CHAP {
mschap
}
eap
}
11 matches
Mail list logo
