You're password needs to be readable in cleartext by FR for anything other than PAP to work.

That way FR can hash/encrypt the password out of LDAP on the server side and compare against the hash it gets passed from the client.

On Sun, Oct 4, 2009 at 6:07 PM, Ryaz Khan <rkhan@ezesolve.com> wrote:

Hi Guys,

 

I am glad to say that I was able to setup FreeRADIUS ver. 2.1.7 with LDAP (slapd) authentication after a continuous research of a whole week. I can authenticate user via LDAP but it only works for PAP, radtest tool works, NTRadPing works but only when using PAP (un-checking CHAP).

 

I tried every possible option/combination I can think of, but unfortunately none of them worked.

 

I would appreciate if some of you can help me with that or can guide me to the right path

 

Thx guys

 

Ryaz Khan


-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html