PEAP + AD
Chris Liles
Chris.Liles at air2web.com
Thu May 25 16:01:13 CEST 2006
If you read the FAQ is says that you can't do CHAP with LDAP.
[speculation]
But I have also read about some guy successfully using OpenLDAP with PEAP because he stored the LM and NT password hashes in the ldap schema along with the clear text password. With AD I suppose you could extend the schema to store these as well, but you'd have to manually update them when a password changes.
[/end speculation]
In my attempts to use ldap with active directory for PEAP it wouldn't work, so I went samba. It works fine. Radiusd -X and the mailing list are your best friends. :)
--
Chris Liles
-----Original Message-----
From: freeradius-users-bounces+chris.liles=air2web.com at lists.freeradius.org [mailto:freeradius-users-bounces+chris.liles=air2web.com at lists.freeradius.org] On Behalf Of Kartthik Raghunathan
Sent: Thursday, May 25, 2006 12:17 AM
To: freeradius-users at lists.freeradius.org
Subject: PEAP + AD
Am trying to authenticate my windows supplicant (ie. XP with sp2) with peap against the windows 2000 AD. But in the error log i could see "Accept-Reject" error message. So i need a clarification here, is't necessary to get samba on with active directory to do PEAP + AD authentication.
sorry for silly q? here !
--
_______________________________________________
Search for businesses by name, location, or phone number. -Lycos Yellow Pages
http://r.lycos.com/r/yp_emailfooter/http://yellowpages.lycos.com/default.asp?SRC=lycos10
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
More information about the Freeradius-Users
mailing list