freeradius-1.1.1 + mschap + ldap with encrypted password

wekz fbl.list at gmail.com
Wed Aug 2 15:55:05 CEST 2006


Hi all,



I've configured freeradius-1.1.1 to do eap-tls and peap to authenticate
windows wireless users against an ldap.

The problem now is that I have to authenticate doing peap against an ldap
which has userpassword encrypted ( and is a point that I can't change unless
it is impossible to do ). I know that when I'm using peap what I finally use
is mschapv2 and  that this protocol makes a challenge ( with username,
password and somestuff ) that the user must response. As my
ldap-user-passwords are encrypted and microsoft clients make the response
with a clear-test password, it couldn't work. At least that's what I've
understood ( and my knowledge about this is very limited, so correct me if
I'm wrong ).  My question is if there is anyway to make it work configuring
ntlm_auth ?

Thanks in advance.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.freeradius.org/pipermail/freeradius-users/attachments/20060802/df064c63/attachment.html>


More information about the Freeradius-Users mailing list