hello,<br><br>i'm still stuck and don't know how to make it work<br><br>i added in ldap.attrmap:<br>checkItem Cleartext-Password userPassword<br>checkItem NT-password userPassword<br>
<br>but i stil have:<br><br>[ldap] expand: %{User-Name} -> bernard<br>[ldap] expand: (cn=%{Stripped-User-Name:-%{User-Name}}) -> (cn=bernard)<br>[ldap] expand: dc=example,dc=com -> dc=example,dc=com<br>
[ldap] ldap_get_conn: Checking Id: 0<br> [ldap] ldap_get_conn: Got Id: 0<br> [ldap] performing search in dc=example,dc=com, with filter (cn=bernard)<br>[ldap] Added User-Password = test in check items<br>[ldap] No default NMAS login sequence<br>
[ldap] looking for check items in directory...<br> [ldap] userPassword -> NT-Password == 0x7465737420<br> [ldap] userPassword -> Cleartext-Password == "test "<br>[ldap] looking for reply items in directory...<br>
[ldap] user bernard authorized to use remote access<br> [ldap] ldap_release_conn: Release Id: 0<br>++[ldap] returns ok<br>++[expiration] returns noop<br>++[logintime] returns noop<br>[pap] Found existing Auth-Type, not changing it.<br>
++[pap] returns noop<br>Found Auth-Type = EAP<br>+- entering group authenticate {...}<br>[eap] Request found, released from the list<br>[eap] EAP/mschapv2<br>[eap] processing type mschapv2<br>[mschapv2] +- entering group MS-CHAP {...}<br>
<b>[mschap] Invalid NT-Password<br>[mschap] Told to do MS-CHAPv2 for bernard with NT-Password<br>[mschap] FAILED: No NT/LM-Password. Cannot perform authentication.<br>[mschap] FAILED: MS-CHAP2-Response is incorrect</b><br>
++[mschap] returns reject<br>[eap] Freeing handler<br>++[eap] returns reject<br><br>I don't understand why i still got an invalid NT-Password.<br><br>thanks for your help<br><br>