Freeradius PEAP/MSCHAPv2 against Apple OpenDirectory

John elmer_radius at yahoo.com.cn
Fri Mar 19 04:04:47 CET 2010 

I attached the captured packets. Please open it with wireshark. 
The password from OD is “********”.  It is neither cleartext password nor encrypted password.


--- 10年3月18日,周四, John <elmer_radius at yahoo.com.cn> 写道:


发件人: John <elmer_radius at yahoo.com.cn>
主题: Re: Freeradius PEAP/MSCHAPv2 against Apple OpenDirectory
收件人: "FreeRadius users mailing list" <freeradius-users at lists.freeradius.org>
日期: 2010年3月18日,周四,下午7:01







I configured the LDAP module talks to Open Directory, based on the debug looks the password fetched from OD, but the authentication always failed. Is there any guide for freeRADIUS+ldap+OD integrating?
I setup freeRADIUS talks to OpenLDAP, it works well.  Can OD return cleartext password like OpenLDAP do?

John.

--- 10年3月15日,周一, Alan DeKok <aland at deployingradius.com> 写道:


发件人: Alan DeKok <aland at deployingradius.com>
主题: Re: Freeradius PEAP/MSCHAPv2 against Apple OpenDirectory
收件人: "FreeRadius users mailing list" <freeradius-users at lists.freeradius.org>
日期: 2010年3月15日,周一,下午12:59


John wrote:
> Hello,
> We want to setup freeRADIUS with Peap/MSCHAPv2 talk to Apple Open
> Directory. I found this option 'use_open_directory'. But looks we need
> to install freeRADIUS on the same machine with Open
> Directory.(https://lists.freeradius.org/pipermail/freeradius-users/2010-February/msg00307.html)
>  
> Do we have to run freeRADIUS on the same machine with OpenDirectory?

  Yes.

> Is
> there a work-around that we can run freeRADIUS seperate from OpenDirectory?

  OpenDirectory is an LDAP server.  Configure that way in FreeRADIUS.
It might work.

  Alan DeKok.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

 
-----下面为附件内容-----


-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html


      
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.freeradius.org/pipermail/freeradius-users/attachments/20100319/c0a73bc6/attachment.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: ODldap.pcap
Type: application/octet-stream
Size: 932 bytes
Desc: not available
URL: <http://lists.freeradius.org/pipermail/freeradius-users/attachments/20100319/c0a73bc6/attachment.obj>

More information about the Freeradius-Users mailing list