MSCHAPV2 authenticate including the suffix
Dean Goldhill
dgoldhill at netutils.com
Mon Jun 9 15:12:56 CEST 2014
Hello,
I am using an SQL backend.
The usernames are stored with the full username including a suffix 'user at domain.com
I am trying to use TTLS/PEAP with MSCHAPV2
So I want freeradius to authenticate the full username, not the stripped username.
I want it to match 'user at domain.com<mailto:user at domain.com>' not 'user'
When trying to authenticate, it says:
[mschap] ERROR: User-Name (user at domain.com<mailto:user at domain.com>) is not the same as MS-CHAP Name (user) from EAP-MSCHAPv2.
If I set the username in the database to just 'user' and send that through in the supplicant, it works.
But I want it to work with the full username including the suffix in the database.
Is this possible?
Thanks for your help
Dean.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.freeradius.org/pipermail/freeradius-users/attachments/20140609/c70fa2f3/attachment-0001.html>
More information about the Freeradius-Users
mailing list