Peap and LDAP

Jefri bin Dahari jeff at
Fri Feb 10 05:20:27 CET 2006

Hi all,

I try to implement wireless users with PEAP but I face problem. It works if 
password in LDAP in clear text. Below are excerpt from radiusd -X and LDAP 

Processing the authenticate section of radiusd.conf

modcall: entering group Auth-Type for request 47

rlm_mschap: Told to do MS-CHAPv2 for jeff with NT-Password

rlm_mschap: FAILED: MS-CHAP2-Response is incorrect

excerpt from LDAP entry:

userPassword: {CRYPT}$1$eCD19aHw$wW6/NTIlJ60fTJqg5JfM8/
shadowExpire: 1145842965
objectClass: top
objectClass: person
objectClass: inetOrgPerson
objectClass: inetLocalMailRecipient
objectClass: posixAccount
objectClass: shadowAccount
objectClass: mimosPerson
objectClass: hordePerson
objectClass: radiusprofile
objectClass: sambaSamAccount
sambaSID: S-1-5-21-739072284-242243887-3386879782
sambaNTPassword: AA182541927C4597271A8CAE2393FA4E
sambaLMPassword: 53DCAC0777C3A618AAD3B435B51404EE

Hope somebaody can help.

More information about the Freeradius-Users mailing list