pfSense + PPTP + FreeRADIUS + LDAP

Alan DeKok aland at deployingradius.com
Tue Feb 2 15:29:38 CET 2010


Fabio Rampazzo Mathias wrote:
> I'm relative new to freeradius, and i'm trying to configure a PPTP VPN
> on pfSense, authenticating in a FreeRADIUS with LDAP module. But, I'm
> getting the following error :
> 
> Found Auth-Type = LDAP
> WARNING: Please update your configuration, and remove 'Auth-Type = Local'
> WARNING: Use the PAP or CHAP modules instead.
> No User-Password or CHAP-Password attribute in the request.
> Cannot perform authentication.
> Failed to authenticate the user.
> 
> The authorize process works fine, but the authentication not. I can't
> find "Auth-Type = Local" as it says. This is my access request :

  Did you look in the configuration files for "Auth-Type = Local"?  Or
in your database?

  And you posted only PART of the debug output.  Wy?

> I've tried many of google searches troubleshooting MS-CHAP problems and
> most of them is saying me to get a Cleartext-Password entry on my
> database. But I can't consider this an option, because the security of
> my accounts in LDAP would be extremely compromised.

  Too bad.  You don't really have a choice.

http://deployingradius.com/documents/protocols/compatibility.html

  Alan DeKok.



More information about the Freeradius-Users mailing list