Hi Alan,<div> I have configured ldap in inner-tunnel authorize section & then mapped Cleartext-Password to userPassword := in ldap.attr file. Then I can authenticate the user with TLS/PEAP-MSCAHPv2 as I have cleartext password configured in my openldap server. </div>
<div><br></div><div>Is that ok. Or some other things else also need need to be configured for deployment environment ?.</div><div><br></div><div>Regards, </div><div><br><div class="gmail_quote">On Fri, Jun 15, 2012 at 8:30 PM, Alan DeKok <span dir="ltr"><<a href="mailto:aland@deployingradius.com" target="_blank">aland@deployingradius.com</a>></span> wrote:<br>
<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><div>Prateek Kumar wrote:<br>
> 1. Now I am trying to authenticate a client (windows) with back-end<br>
> LDAP database using PEAP(mschap v2). Not able to authenticate. I have<br>
> tested EAP-TLS, EAP-PEAP also with the same certificates ( working fine ).<br>
><br>
> debugging log.<br>
<br>
</div> Read it.<br>
<div><br>
> <a href="http://pastebin.com/vcucS9YK" target="_blank">http://pastebin.com/vcucS9YK</a><br>
><br>
> I have cross checked the date & certificate validity also. Do we need<br>
> some other settings ?<br>
<br>
</div> The debug log points you to all the documentation you need.<br>
<span><font color="#888888"><br>
Alan DeKok.<br>
-<br>
List info/subscribe/unsubscribe? See <a href="http://www.freeradius.org/list/users.html" target="_blank">http://www.freeradius.org/list/users.html</a><br>
</font></span></blockquote></div><br></div>