MSChap via ntlm_auth problem
Anton Brinyov
anton.brinyov at gmail.com
Thu Aug 20 21:15:59 CEST 2009
Here are my sites-enabled/default and sites-enabled/inner-tunnel files.
Thanks,
Anton
2009/8/19 Alan Buxey <A.L.M.Buxey at lboro.ac.uk>:
> Hi,
>
>> I have another freeradius host (freeradius 2.1.3) with the same
>> authentication scheme.
>> I look at debug output on it:
>>
>> Found Auth-Type = MSCHAP
>> +- entering group MS-CHAP {...}
>> [mschap] No Cleartext-Password configured. Cannot create LM-Password.
>> [mschap] No Cleartext-Password configured. Cannot create NT-Password.
>> [mschap] Told to do MS-CHAPv2 for BAS with NT-Password
>> [mschap] WARNING: Deprecated conditional expansion ":-". See "man
>> unlang" for details
>> [mschap] WARNING: Deprecated conditional expansion ":-". See "man
>> unlang" for details
>> [mschap] expand:
>> --username=%{Stripped-User-Name:-%{User-Name:-None}} -> --username=BAS
>> [mschap] mschap2: bb
>> [mschap] expand: --challenge=%{mschap:Challenge:-00} ->
>> --challenge=205180e1818e1214
>> [mschap] expand: --nt-response=%{mschap:NT-Response:-00} ->
>> --nt-response=0a9b4e0053367b750904915b08aa65b792be3274e312aa78
>> Exec-Program output: NT_KEY: A9B342EC3E218E54A330556C468415CD
>> Exec-Program-Wait: plaintext: NT_KEY: A9B342EC3E218E54A330556C468415CD
>> Exec-Program: returned: 0
>> [mschap] adding MS-CHAPv2 MPPE keys
>> ++[mschap] returns ok
>>
>> ntlm_auth comands is the same on both hosts.
>>
>> The difference is "Exec-Program output:"
>>
>> Why?
>
> your previous emails only listed the mschap module and radiusd.conf - but
> not the sites-enabled/default or sites-enabled/inner-tunnel files.....
>
> alan
> -
-------------- next part --------------
A non-text attachment was scrubbed...
Name: default
Type: application/octet-stream
Size: 15198 bytes
Desc: not available
URL: <http://lists.freeradius.org/pipermail/freeradius-users/attachments/20090820/d9dd5fda/attachment.obj>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: inner-tunnel
Type: application/octet-stream
Size: 11761 bytes
Desc: not available
URL: <http://lists.freeradius.org/pipermail/freeradius-users/attachments/20090820/d9dd5fda/attachment-0001.obj>
More information about the Freeradius-Users
mailing list