ntlm_auth problem using EAP-TLS with MSCHAP authentication to LDAP server

Ivan Kalik tnt at kalik.net
Fri Jul 3 13:17:19 CEST 2009


> The user/password information are held in the LDAP server.  I have been
> able
> to authenticate successfully with packets coming from non-EAP clients.
> But
> for EAP authentication clients, I have been receiving the following error
> lines.  (I am using ntlm_auth = "/usr/bin/ntlm_auth --request-nt-key
> --username=%{Stripped-User-Name:-%{User-Name:-None}}
> --challenge=%{mschap:Challenge:-00} to call the LDAP server.

ntlm_auth is for Active Directory. Comment out ntlm_auth line in maschap
module and it will work as long as you have clear or nt hashed password
stored in ldap.

Ivan Kalik
Kalik Informatika ISP




More information about the Freeradius-Users mailing list