freeradius radclient MSCHAPv2 command string
Phil Mayers
p.mayers at imperial.ac.uk
Mon Jun 23 17:57:31 CEST 2014
On 23/06/14 16:46, Stephen Nichols wrote:
> Hi,
>
> I want to use radclient to access radius server using MSCHAPv2. Using
> freeradius version 2.1.12 on CentOS and 2.2.3 on our own Linux server.
> I have used the following string to successfully authenticate using
> MSCHAPv1.
>
> Echo ‘User-Name = User1,MS-CHAP-Password =mypassword,NAS-IP-Address
> =172.21.100.131,NAS-Port-Type=15,NAS-Port=1’ | radclient –X 172.21.20.50
> auth testing123
>
> Searched around and checked radclient –h, but found no information
> regarding format for an MSCHAPv2 command string.
I believe radclient can't do MSCHAPv2.
You can "fake" it by capturing an MSCHAPv2 auth and replaying it (this
does not work for EAP-MSCHAPv2). We use this for our Nagios checks.
More information about the Freeradius-Users
mailing list