21 Nov
2007
21 Nov
'07
11:47 a.m.
Hi,
Alan, I didn't find any option for the mschapv2 problem in your web page.
Unencrypt ldap passwords is not a smart solution.
It seems that windos xp client only accept mschapv2 or TLS to authenticate, if a use TLS, I cannot use ldap because only the client certificate is used to authenticate.
In my network, I need to authenticate with the mail passwords stored in ldap.
Server: red hat with freeradius Client: windows xp sp2
Protocols: PEAP + MSCHAPv2 + LDAP
I don't use TLS because it only uses certificates to authenticate.
Do you have any suggestion???
store the NThash in the LDAP? i havent tried this but should work alan