Hi, alan Thanks for your help. The situation is that I can use radtest with the username and password in the ldap database, "radtest username password 127.0.0.1 0 testing123" but with "radtest -t mschap username password 127.0.0.1 0 testing123" test failure. I also can not login by a mobile phone with the user name and password in the ldap database. So, I thought it might be the reason that the ldap server not send with a password. However, my manager want me to find a way to achieve the authentication by the successful information replyed from the ldap server. I am new to radius and ldap, so I am not sure whether this is possible. Thanks again.
Date: Mon, 13 Jan 2014 10:36:07 +0000 From: A.L.M.Buxey@lboro.ac.uk To: freeradius-users@lists.freeradius.org Subject: Re: Radius Server and Ldap Server
Hi,
Hi, Thanks for your help. After apply the configuration you recommend to the inner-tunnel file, the debug information no process for searching ldap server, and user from ldap database still can not be authenticated. There are also infomation about
PEAP doesnt provide the password. its challenge response...so you either need the LDAP server to provide you the password in a format that can be used (plain or NTLM hash) or use EAP-TTLS/PAP
alan - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html