-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 I think the Auth-Type value is the problem, try to use an entry like "username" User-Password = "pass" without explicit the Auth-Type value. but if it works i do not realy understand why it works :) i'm a freeradius newbie too. arjuna -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.6 (GNU/Linux) iD8DBQFF3FZC7hNGJisFPxQRAuFqAJ9ebvcnj4Pe5c3dSnKRoKCkdp8JBwCdFJbU gLiRcofUX9yEk+k6AiCyrvc= =9QAG -----END PGP SIGNATURE----- -- This message has been scanned for viruses and dangerous content by MailScanner, and is believed to be clean.
I got this working - Thanks for all the useful posts in this forum. now the problem is that when a user logs off of the windows machine, we still want to be able to manage the system so we need to put a certificate on the machine store (not just the user store, personally I don't like how windows does this, it should give you a choice of what cert to use but anyways..) When the system attempts authenticating with machine cert, the username it presents the radius is host/user@domain.dom and I need radius to strip out the "host/" in all requests if it sees one. How do I do that. I know how to do this with hints file but I can only add stuff onto the username how do I trip?? Thanks, ____________________________________________________________________________________ Looking for earth-friendly autos? Browse Top Cars by "Green Rating" at Yahoo! Autos' Green Center. http://autos.yahoo.com/green_center/
participants (2)
-
Agent Smith -
Arjuna Scagnetto