Hello, I think I used some of the wrong terms before ... So currently we have a freeradius server with the default setup except I have enabled the SQL module. I have then placed users in a mysql db according to the schema. In the DB I setup static IP's for the users. Now the clients are WinXP machines using the Microsoft PPTP connection with the defaults and it is working fine. I believe that it is using MS-CHAP. I would like to move away from the SQL DB, since all the users exist in another place. So I was hoping to use the rlm_perl module to check the username and passwords of the people connecting and if valid assign them a static IP. Michael Alan DeKok wrote:
Michael Gale <michael.gale@pason.com> wrote:
To the authentication section, which means if the Auth-Type is set to perl then using the module perl. However I think that since the client or server is setting the auth type to MS-CHAP since that is what the client is using, it is trying to use the mschap module.
The mschap module is setting that.
Are you really saying you're going to write Perl code to validate the MS-CHAP data sent by the client, and in turn send the right MS-CHAP response? Why? What possible benefit does this have?
Here I assign static IP's and users to groups. We wish to use rlm_perl instead of the sql module so we can authenticate the users against a in house application.
Does that in-house application support MS-CHAP? No? Then using rlm_perl won't help.
Alan DeKok. -- http://deployingradius.com - The web site of the book http://deployingradius.com/blog/ - The blog - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
-- Michael Gale Red Hat Certified Engineer Network Administrator Pason Systems Corp.