Hi! I have several services who use LDAP (openldap). For example Linux(via pam),apache,svn. On my ldap server passwords stored in encrypted hash. Do I right understand you that I need add another field(nt hash) for radius authorization? I don't want to store clear text password in my LDAP. Another important question for my is : Does freeradius support MAC filtering. I need this feature for my WIFI network. Thanks a lot Alexey Alexey Eronko wrote:
I have usual problem for persons who wants to setup LDAP+PEAP integration. I want to setup WIFI with PEAP auth. via FreeRadius. The problem is that I can login with ldap login thought radtest testuser 123456 localhost 10 secret.
Which probably does LDAP bind. That's not what you need for PEAP to work.
It seems that is my direct ldap query don't have : User-Password = "" Atribute.
Then you can't do PEAP. PEAP needs access to the users cleartext password. Configure a password in LDAP for the user, and PEAP will work. Alan DeKok. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html