PEAP LDAP password problem
Alexey Eronko
alexey.eronko at gmail.com
Tue Feb 26 10:10:05 CET 2008
Hi!
I have several services who use LDAP (openldap). For example Linux(via
pam),apache,svn.
On my ldap server passwords stored in encrypted hash.
Do I right understand you that I need add another field(nt hash) for radius
authorization?
I don't want to store clear text password in my LDAP.
Another important question for my is : Does freeradius support MAC
filtering. I need this feature for my WIFI network.
Thanks a lot
Alexey
Alexey Eronko wrote:
> I have usual problem for persons who wants to setup LDAP+PEAP
integration.
> I want to setup WIFI with PEAP auth. via FreeRadius.
> The problem is that I can login with ldap login thought radtest testuser
> 123456 localhost 10 secret.
Which probably does LDAP bind. That's not what you need for PEAP to work.
> It seems that is my direct ldap query don't have : User-Password = ""
> Atribute.
Then you can't do PEAP. PEAP needs access to the users cleartext
password.
Configure a password in LDAP for the user, and PEAP will work.
Alan DeKok.
-
List info/subscribe/unsubscribe? See
http://www.freeradius.org/list/users.html
More information about the Freeradius-Users
mailing list