Trouble With Eap-TTLS - PAP - LDAP - Azure AD DS
Bryce Long
blong at developertown.com
Fri Dec 11 21:36:37 CET 2020
That makes sense lol
Thank you for responding!
Could you guide me or tell me how I can best store those passwords? I don't
have a lot of experience in this area
Is this done in the free radius config files or somewhere else?
I read somewhere about changing the attributes for nt-password or pointing
that that attribute but I couldn't find anything that really explained it
in detail
Again thank you to everyone who responds been banging my head against this
for a little while
On Fri, Dec 11, 2020 at 3:24 PM Sven Hartge <sven at svenhartge.de> wrote:
> On 11.12.20 20:06, Bryce Long wrote:
>
> > I was just now reading from another post that I only really have 2
> choices:
> > I either have to store the passwords somewhere for mschap to work or I
> have
> > to set the server to use ttls and pap?
>
> First choice: Yes, the one with the most compatibility.
>
> Second choice: Problematic. The Client drives the conversation and if
> the Client says "I wann do PEAP-MSCHAPv2!" then there is nothing the
> RADIUS server can do to convince him otherwise.
>
> Since PEAP-MSCHAPv2 is still the most compatible protocol for WiFi you
> really have no other choice than the first choice.
>
> Unless you want to drown in support requests. (Ask me how I know.)
>
> Grüße,
> Sven.
> -
> List info/subscribe/unsubscribe? See
> http://www.freeradius.org/list/users.html
More information about the Freeradius-Users
mailing list