freeradius-1.1.1 + mschap + ldap with encrypted password
- To: "FreeRadius users mailing list" <freeradius-users@lists.freeradius.org>
- Subject: freeradius-1.1.1 + mschap + ldap with encrypted password
- From: wekz <fbl.list@gmail.com>
- Date: Wed, 2 Aug 2006 15:55:05 +0200
- Domainkey-signature: a=rsa-sha1; q=dns; c=nofws; s=beta; d=gmail.com; h=received:message-id:date:from:to:subject:mime-version:content-type; b=o686gWLPycOfdMDdILrw8hwrRB7vXp9u+VTSMz4uj7ZXBkTW5aY2aU8qmV++ElI4GiKt32IM+PVcmSHnhshdPnNl4e+lRSkevNsKnJpzZjVKi4MG3Y8M11IJqcphnKra+0zYoB9AzXB90/rB6YrWAeOrxgCznM9U4OyMUXp4wX4=
- Reply-to: FreeRadius users mailing list <freeradius-users@lists.freeradius.org>
Hi all,
I've configured freeradius-1.1.1 to do eap-tls and peap to authenticate windows wireless users against an ldap.
The problem now is that I have to authenticate doing peap against an ldap which has userpassword encrypted ( and is a point that I can't change unless it is impossible to do ). I know that when I'm using peap what I finally use is mschapv2 and that this protocol makes a challenge ( with username, password and somestuff ) that the user must response. As my ldap-user-passwords are encrypted and microsoft clients make the response with a clear-test password, it couldn't work. At least that's what I've understood ( and my knowledge about this is very limited, so correct me if I'm wrong ). My question is if there is anyway to make it work configuring ntlm_auth ?
Thanks in advance.
This archive was generated by a fusion of
Pipermail (Mailman edition) and
MHonArc.