Great - thanks,
Absolutely outstanding help thanks! :)
I hashed from ldap.attrmap as below
#checkItem      LM-Password                     sambaLmPassword
#checkItem      NT-Password                     sambaNtPassword
And it all worked! :)
Thanks very much!
Simon

>>> <tnt@kalik.net> 12/11/2008 13:46 >>>
>[ldap] Added the eDirectory password password in check items as
>Cleartext-Password

OK. Here is the clear text password.

>[ldap] No default NMAS login sequence
>[ldap] looking for check items in directory...
>rlm_ldap: acctFlags -> SMB-Account-CTRL-TEXT == "[UX         ]"
>rlm_ldap: sambaNtPassword -> NT-Password ==
>0x4145394341303636374133413937333342303139423034323645363933373332
>rlm_ldap: sambaLmPassword -> LM-Password ==
>0x3635423939303044343142344533363831394631304139333344343836384443

So, you don't need these. Remove them and mschap will work. That hash
looks decimal not hex to me. I don't think that they are correct.

Ivan Kalik
Kalik informatika ISP

-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html