Received: from mxdrop117.xs4all.nl (mxdrop117.xs4all.nl [194.109.24.101])
	by list4.xs4all.nl (8.13.8/8.13.6) with ESMTP id n2SEtOGk005481
	for <freeradius-users@list4.xs4all.nl>;
	Sat, 28 Mar 2009 15:55:24 +0100 (CET)
	(envelope-from varadas@hotmail.com)
Received: from bay0-omc2-s2.bay0.hotmail.com (bay0-omc2-s2.bay0.hotmail.com
	[65.54.246.138])
	by mxdrop117.xs4all.nl (8.13.8/8.13.8) with ESMTP id n2SEtFoe008770
	for <freeradius-users@lists.freeradius.org>;
	Sat, 28 Mar 2009 15:55:17 +0100 (CET)
	(envelope-from varadas@hotmail.com)
Received: from BAY139-W20 ([64.4.43.55]) by bay0-omc2-s2.bay0.hotmail.com with
	Microsoft SMTPSVC(6.0.3790.3959); Sat, 28 Mar 2009 07:55:11 -0700
Message-ID: <BAY139-W201A38175CE56F216BF416BD8F0@phx.gbl>
Content-Type: multipart/alternative;
	boundary="_b50ccaec-03c3-45d3-807b-3b7ca1edaf39_"
X-Originating-IP: [59.92.195.224]
From: Varadharajan Seshadri <varadas@hotmail.com>
To: <freeradius-users@lists.freeradius.org>
Subject: Authentication Digest
Date: Sat, 28 Mar 2009 14:55:11 +0000
Importance: Normal
MIME-Version: 1.0
X-OriginalArrivalTime: 28 Mar 2009 14:55:11.0412 (UTC)
	FILETIME=[31ACCF40:01C9AFB5]
X-XS4ALL-DNSBL-Checked: mxdrop117.xs4all.nl checked 65.54.246.138 against DNS
	blacklists
X-CNFS-Analysis: v=1.0 c=1 a=yt_TuutCt0YA:10 a=yMhMjlubAAAA:8
	a=_k50QopNaflXVQa2aeAA:9 a=srLTUnFRPbo0EtHNqtIA:7
	a=ngCG5UJwe4UwfNzv6T9vcbsWns0A:4 a=E02ToIwTM_MA:10 a=3SmO1NJXDBsA:10
	a=SQMmjYtARmYfkXCqYKYA:9 a=PeMMCr7B8b3FNrT5aJ0A:7
	a=p5ETDHWCm1A4w3RigFsYpuUrJxMA:4 a=37WNUvjkh6kA:10
X-Virus-Scanned: by XS4ALL Virus Scanner
X-XS4ALL-Spam-Score: 0.0 () HTML_MESSAGE, SPF_PASS
X-XS4ALL-Spam: NO

--_b50ccaec-03c3-45d3-807b-3b7ca1edaf39_
Content-Type: text/plain; charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable


Hi=2C
I would like to have my SIP clients authenticate with Active Directory (AD)=
. I am using RADIUS in the middle to do the digest based authentication bet=
ween by sip client and AD.

SIP Client ---> RADIUS Client ---> RADIUS Server (IAS of windows server) --=
--> Activer Directory is my setup.

I downloaded RADIUS Client version 1.1.6 (which is the latest i find in fre=
eradius.org) to do the digest based Auth. Following is the AV pair i used t=
o form my Request packet=2C as per RFC 4590/5090

PW_USER_NAME
PW_SERVICE_TYPE
PW_DIGEST_REALM
PW_DIGEST_METHOD
PW_DIGEST_ALGORITHM
PW_DIGEST_URI

RADIUS server (IAS of Windows) complains of malformed packets.

If any of you have used digest based authentication=2C using Freeradius cli=
ent=2C i would like you to help me with this. Also=2C i am not sure how to =
add message autehnticator to this request message=2C which i understand is =
mandatory. Not sure if this is THE issue.

Thanks
Varad

_________________________________________________________________
Windows Live Messenger. Multitasking at its finest.
http://www.microsoft.com/india/windows/windowslive/messenger.aspx=

--_b50ccaec-03c3-45d3-807b-3b7ca1edaf39_
Content-Type: text/html; charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable

<html>
<head>
<style>
.hmmessage P
{
margin:0px=3B
padding:0px
}
body.hmmessage
{
font-size: 10pt=3B
font-family:Verdana
}
</style>
</head>
<body class=3D'hmmessage'>
Hi=2C<br>I would like to have my SIP clients authenticate with Active Direc=
tory (AD). I am using RADIUS in the middle to do the digest based authentic=
ation between by sip client and AD.<br><br>SIP Client ---&gt=3B RADIUS Clie=
nt ---&gt=3B RADIUS Server (IAS of windows server) ----&gt=3B Activer Direc=
tory is my setup.<br><br>I downloaded RADIUS Client version 1.1.6 (which is=
 the latest i find in freeradius.org) to do the digest based Auth. Followin=
g is the AV pair i used to form my Request packet=2C as per RFC 4590/5090<b=
r><br>PW_USER_NAME<br>PW_SERVICE_TYPE<br>PW_DIGEST_REALM<br>PW_DIGEST_METHO=
D<br>PW_DIGEST_ALGORITHM<br>PW_DIGEST_URI<br><br>RADIUS server (IAS of Wind=
ows) complains of malformed packets.<br><br>If any of you have used digest =
based authentication=2C using Freeradius client=2C i would like you to help=
 me with this. Also=2C i am not sure how to add message autehnticator to th=
is request message=2C which i understand is mandatory. Not sure if this is =
THE issue.<br><br>Thanks<br>Varad<br><br /><hr />Windows Live Messenger.  <=
a href=3D'http://www.microsoft.com/india/windows/windowslive/messenger.aspx=
' target=3D'_new'>Multitasking at its finest.</a></body>
</html>=

--_b50ccaec-03c3-45d3-807b-3b7ca1edaf39_--
