XP auth + PEAP (debik)

xav guerin xavtoo at gmail.com
Tue Dec 6 14:13:08 CET 2005


I think you should replace "==" by ":=" .

this conf should work:
nurah User-Password=="password"
            EAP-Type := PEAP


2005/12/6, mat yuh <yusshalimee at yahoo.com>:
> i put this in users file but still failed.. same
> problem " rlm_mschap: FAILED: No NT/LM-Password".
>
>
> nurah    EAP-Type == PEAP,User-Password=="mypasswd"
>
>
> --- xav guerin <xavtoo at gmail.com> wrote:
>
> > It's in radius in module configuration for mschap
> > (just before ldap
> > module), but your config is correct from this point
> > of view (it's
> > commented out).
> > Did you try EAP-Type := PEAP in the users file ?
> >
> > 2005/12/6, mat yuh <yusshalimee at yahoo.com>:
> > > here is my radiusd.conf
> > >
> > > --- xav guerin <xavtoo at gmail.com> wrote:
> > >
> > > > If you use users file with a User-Password, you
> > > > don't have to use ntlm
> > > > in MSCHAP config because it's only here to deal
> > with
> > > > a Windows domain
> > > > Controller.
> > > >
> > > > 2005/12/6, mat yuh <yusshalimee at yahoo.com>:
> > > >
> > > > > rlm_mschap: FAILED: No NT/LM-Password.  Cannot
> > > > perform
> > > > > authentication.
> > > > > ....
> > > > > i do
> > > > > configure default_eap_type = peap in eap.conf
> > and
> > > > have
> > > > > a plain text password in users file :
> > > > >
> > > > > nurah User-Password == "mypasswd"
> > > >
> > > > Here is another problem :
> > > > You're trying  to use a user cert, setting
> > EAP-Type
> > > > to PEAP in users
> > > > may solves it.
> > > >
> > > > HTH
> > > >
> > > > > rlm_eap_tls:  Length Included
> > > > >   eaptls_verify returned 11
> > > > >     (other): before/accept initialization
> > > > >     TLS_accept: before/accept initialization
> > > > >   rlm_eap_tls: <<< TLS 1.0 Handshake [length
> > > > 0032],
> > > > > ClientHello
> > > > >     TLS_accept: SSLv3 read client hello A
> > > > >   rlm_eap_tls: >>> TLS 1.0 Handshake [length
> > > > 004a],
> > > > > ServerHello
> > > > >     TLS_accept: SSLv3 write server hello A
> > > > >   rlm_eap_tls: >>> TLS 1.0 Handshake [length
> > > > 06cc],
> > > > > Certificate
> > > > >     TLS_accept: SSLv3 write certificate A
> > > > >   rlm_eap_tls: >>> TLS 1.0 Handshake [length
> > > > 0004],
> > > > > ServerHelloDone
> > > > >     TLS_accept: SSLv3 write server done A
> > > > >     TLS_accept: SSLv3 flush data
> > > > >     TLS_accept:error in SSLv3 read client
> > > > certificate
> > > > > A
> > > >
> > > > -
> > > > List info/subscribe/unsubscribe? See
> > > > http://www.freeradius.org/list/users.html
> > > >
> > >
> > >
> > >
> > > __________________________________________
> > > Yahoo! DSL – Something to write home about.
> > > Just $16.99/mo. or less.
> > > dsl.yahoo.com
> > >
> > >
> > > -
> > > List info/subscribe/unsubscribe? See
> > http://www.freeradius.org/list/users.html
> > >
> > >
> > >
> >
> > -
> > List info/subscribe/unsubscribe? See
> > http://www.freeradius.org/list/users.html
> >
>
>
>
>
> __________________________________________
> Yahoo! DSL – Something to write home about.
> Just $16.99/mo. or less.
> dsl.yahoo.com
>
> -
> List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
>




More information about the Freeradius-Users mailing list