802.1x machine authentication patch help

Jamie Crawford crawford at cmsu1.cmsu.edu
Fri Nov 18 20:25:42 CET 2005 

Sorry for the typo, I meant to type rlm_mschap.  Are there only certain
files out of the /src/modules/rlm_mschap cvs snapshot that I need to
copy over? 

Thanks,
jamie


>>> mgriego at utdallas.edu 11/18/2005 12:16:43 PM >>>
Make sure you used the rlm_MSchap module from the snapshot, not the 
rlm_chap module.  They're different.

--Mike


Jamie Crawford wrote:
> Hi,
> I am trying to get machine authentication working with freeradius. 
I
> have patched the samba code and freeradius code.  But am getting
this
> error when the machine tries to authenticate.  I patched the
rlm_chap
> module by taking last nights cvs snapshot and copying over the
rlm_chap
> folder overwriting the contents of the same folder in the
> freeradius-1.0.5 release and recompiling.  I see that it is trying
to
> pass the username as "host/IS--000031176".  I thought the updated
> rlm_mschap was suppposed to strip the "host/" part of the username. 
Do
> I need to create a realm to strip the "host/"?
> Any help would be appreciated!!!
> Thanks,
> jamie
>
>
> make clean
>
> ./configure --configure --with-raddbdir=/etc/radius
> --with-logdir=/var/log/radius --disable-snmp --without-rlm_sql
> --without-rlm_ldap --without-rlm_krb5
>
> make
>
> make install
>
> modcall: entering group Auth-Type for request 6
>   rlm_mschap: No User-Password configured.  Cannot create
LM-Password.
>   rlm_mschap: No User-Password configured.  Cannot create
NT-Password.
>   rlm_mschap: Told to do MS-CHAPv2 for host/IS--000031176 with
> NT-Password
> radius_xlat: Running registered xlat function of module mschap for
> string 'User-Name'
> radius_xlat: Running registered xlat function of module mschap for
> string 'Challenge'
>  mschap2: d3
> radius_xlat: Running registered xlat function of module mschap for
> string 'NT-Response'
> radius_xlat:  '/usr/bin/ntlm_auth --domain= --request-nt-key
> --username=host/IS--000031176 --challenge=ba9273ce0768615e
> --nt-response=fd385f1011a2f799b5d62e04ba                             
  
>              d8bb39719fa48c3d11299e'
> Exec-Program: /usr/bin/ntlm_auth --domain= --request-nt-key
> --username=host/IS--000031176 --challenge=ba9273ce0768615e
> --nt-response=fd385f1011a2f799b5d62e04bad8bb39719fa48c3d11299e
> Exec-Program output: Logon failure (0xc000006d)
> Exec-Program-Wait: plaintext: Logon failure (0xc000006d)
> Exec-Program: returned: 1
>   rlm_mschap: External script failed.
>
> - 
> List info/subscribe/unsubscribe? See
http://www.freeradius.org/list/users.html 
>   
- 
List info/subscribe/unsubscribe? See
http://www.freeradius.org/list/users.html

More information about the Freeradius-Users mailing list