jck-freeradius@southwestern.edu wrote:
I thought so as well. I am 99% sure that the NTLM passwords I am using are valid.
What you put into SQL wasn't valid.
I am including two URLs. One with debug logs showing user 'johnk' trying to AAA, using NT-Password. The other shows testacct (using the same supplicant as johnk, XP) using Password (cleartext). ... Password, logging in as testacct: http://www.southwestern.edu/~johnk/testacct_Password_debug.txt
Notice that with changing the Attribute in radcheck to Password, and assigning the Value a cleartext, Access-Accept is generated.
As I said. ...
NT-Password, logging in as johnk: http://www.southwestern.edu/~johnk/johnk_NT-Password_debug.txt
Which shows it not finding the NT password. Try using just MS-CHAP with an NT password in SQL. Once that works, PEAP will work. Alan DeKok.