1 Sep
2018
1 Sep
'18
8:56 a.m.
On Sep 1, 2018, at 8:17 AM, Jürgen Obermeyer <om@oegym.de> wrote:
Not able to get ntlm_auth working, I switched now to krb5. 'radtest' says:
That's good, but we don't need to see the output of radtest.
May I ignore the "PAP WARNINGS"?
Yes.
And will wireless clients (or the users) authenticate if 'radtest' (via ssh) is successfull?
Only EAP-TTLS will work. PEAP will not. That's because only EAP-TTLS supplies the clear text password that is needed by krb5. Something is very wrong with the Samba / AD infrastructure if MS-CHAP doesn't work. Alan DeKok.