Connecting freeRadius to openLDAP
Phil Mayers
p.mayers at imperial.ac.uk
Tue Jul 21 18:35:42 CEST 2009
Eric Bourkland wrote:
> I can attach any of my config files but what I have done is rebuilt a
> whole new server RHEL4.7-ES, with freeRadius v2.1.6 installed. with
In all probability, your LDAP database either:
1. Does not contain the plaintext password, or NT/LM hash.
2. Does not give the plaintext password or NT/LM hash to FreeRadius
because of LDAP ACLs.
...and you are trying to do PEAP/MSCHAPv2. If so, you need to correct
this, because PEAP/MSCHAPv2 requires either:
1. FreeRadius have the plaintext password
2. FreeRadius have the NT/LM hash
3. FreeRadius be able to call an RPC on a domain controller (via the
"ntlm_auth" helper config option on the "mschap" module)
More information about the Freeradius-Users
mailing list