MS 8021.x PEAP failing
Gary Gatten
Ggatten at waddell.com
Thu Aug 20 20:58:25 CEST 2009
Hello,
I'm relatively new to FR, unlang, etc. - so bear with me.
Trying to use M$ XP 802.1x supplicant to auth to a Cisco switch. I've
gotten MD5 to work no prob (also vty login to the switch itself using
NTLM-Auth) - but can't seem to get EAP-TLS (certs) or PEAP to work.
Given that in my cert config I couldn't even get the PC to find a cert,
I decided to try PEAP.
In my PEAP config on the XSupplicant I use: (EAP-MSCHAP v2) and select
(Automatically use my Windows logon name and password) This is what
fails.
I THINK it's because my Domain Name is cat'd with my username and thus
not found? Logs show stuff like "DOMAIN//username" and
"DOMAIN/username"
If in my PEAP conf I uncheck "Automatically use my Windows logon name
and password" and enter my username/password manually - I auth fine.
I've been playing around with conf/module files trying to strip the
DOMAIN out of my login request - but no luck!
Any help would be GREATLY appreciated!
TIA!
Gary
<font size="1">
<div style='border:none;border-bottom:double windowtext 2.25pt;padding:0in 0in 1.0pt 0in'>
</div>
"This email is intended to be reviewed by only the intended recipient
and may contain information that is privileged and/or confidential.
If you are not the intended recipient, you are hereby notified that
any review, use, dissemination, disclosure or copying of this email
and its attachments, if any, is strictly prohibited. If you have
received this email in error, please immediately notify the sender by
return email and delete this email from your system."
</font>
More information about the Freeradius-Users
mailing list