Yes it is ntlm_auth for ms-chap i have confofigured but i still have the same response.Idon't know why. <br><br>
<div class="gmail_quote">2009/4/27 bastardinho69 <span dir="ltr"><<a href="mailto:bastardinho69@gmail.com">bastardinho69@gmail.com</a>></span><br>
<blockquote class="gmail_quote" style="PADDING-LEFT: 1ex; MARGIN: 0px 0px 0px 0.8ex; BORDER-LEFT: #ccc 1px solid">David N'DAKPAZE wrote:<br>
<blockquote class="gmail_quote" style="PADDING-LEFT: 1ex; MARGIN: 0px 0px 0px 0.8ex; BORDER-LEFT: #ccc 1px solid">
<div class="im">hello,<br>I am configuring freeradius for authentication with active directory.I've used <a href="http://deployingradius.com/documents/configuration/active_directory" target="_blank">http://deployingradius.com/documents/configuration/active_directory</a> but freeradius reject all the requests because of no known password.It what i have when i make a request:<br>
Ready to process requests.<br>rad_recv: Access-Request packet from host 127.0.0.1 port 51084, id=198, length=61<br> User-Name = "azerty"<br> User-Password = "uiop"<br> NAS-IP-Address = 127.0.0.1<br>
NAS-Port = 0<br>+- entering group authorize {...}<br>++[preprocess] returns ok<br>++[chap] returns noop<br></div>[suffix] No '@' <mailto:%27@%27> in User-Name = "azerty", looking up realm NULL
<div class="im"><br>[suffix] No such realm "NULL"<br>++[suffix] returns noop<br>++[files] returns noop<br>++[expiration] returns noop<br>++[logintime] returns noop<br>[pap] WARNING! No "known good" password found for the user. Authentication may fail because of this.<br>
++[pap] returns noop<br>No authenticate method (Auth-Type) configuration found for the request: Rejecting the user<br>Failed to authenticate the user.<br>Login incorrect: [azerty/uiop] (from client localhost port 0)<br>Using Post-Auth-Type Reject<br>
+- entering group REJECT {...}<br>[attr_filter.access_reject] expand: %{User-Name} -> azerty<br>attr_filter: Matched entry DEFAULT at line 11<br>++[attr_filter.access_reject] returns updated<br>Delaying reject of request 0 for 1 seconds<br>
Going to the next request<br>Waking up in 0.9 seconds.<br>Sending delayed reject for request 0<br>Sending Access-Reject of id 198 to 127.0.0.1 port 51084<br>Waking up in 4.9 seconds.<br>Cleaning up request 0 ID 198 with timestamp +27<br>
Thanks for your help<br></div>------------------------------------------------------------------------<br><br>-<br>List info/subscribe/unsubscribe? See <a href="http://www.freeradius.org/list/users.html" target="_blank">http://www.freeradius.org/list/users.html</a><br>
</blockquote>As far as i know, u should use mschap to authenticate against AD ;)<br>-<br>List info/subscribe/unsubscribe? See <a href="http://www.freeradius.org/list/users.html" target="_blank">http://www.freeradius.org/list/users.html</a><br>
</blockquote></div><br>