Message: 6
Date: Mon, 30 Oct 2006 08:25:43 -0500
From: Michael Lecuyer <mjl@theorem.com>
Subject: Re: RADIUS AUTHENTICATOR---need HELP using MSCHAP and
NTPASSWORD
To: FreeRadius users mailing list
<freeradius-users@lists.freeradius.org
>
Message-ID: <4545FD57.1030202@theorem.com>
Content-Type: text/plain; charset=ISO-8859-1; format=flowed
This pretty much sums up the problem:
> rlm_mschap: No MS-CHAP-Challenge in the request
This is not a valid MS-CHAP request. You might want to look at the
actual attributes passed to see if this is really an MS-CHAP request. It
will contain Microsoft VSAs containing a MS-CHAP-Challenge and a
MS-CHAP-Response.
How I can do it?
ego seek wrote:
> I use Squid and RADIUS.
>
> Squid use Squid_radius_authenticator to authenticate a client and write
> a log in which there is the username and the http request.
>
> THE PROBLEM IS:
> In the radcheck table i put a value: "AUTH-TYPE" and set "MS-CHAP" for
> the user. his password is stored in NT-HASH format.
> when the authenticator try to authenticate the user, this is the output
>
>
> ".......
> rad_check_password: Found Auth-Type MS-CHAP
> auth: type "MS-CHAP"
> Processing the authenticate section of
radiusd.conf
> modcall: entering group MS-CHAP for request 6
> rlm_mschap: No User-Password configured. Cannot create LM-Password.
> rlm_mschap: Found NT-Password
> rlm_mschap: No MS-CHAP-Challenge in the request
> modcall[authenticate]: module "mschap" returns reject for request 6
> modcall: leaving group MS-CHAP (returns reject) for request 6
> auth: Failed to validate the user.
> Login incorrect:[username/password]"
>
>
> can anybody help me?
> please.
>
>
>
> ------------------------------