MS-CHAP2 Failure

Mike Diggins mike.diggins at mcmaster.ca
Tue Mar 17 18:00:12 CET 2009


On Tue, 17 Mar 2009, tnt at kalik.net wrote:

>> I've made no progress in finding a solution to my MSCHAP problem. To
>> summarize, Winbind and FreeRadius authenticate via PAP fine on both
>> servers (RedHat V5), but MSCHAP fails on one of the two (see below). I
>> tried tar'ing up the entire /etc/raddb directory and copied it to the
>> other machine, but it still fails. I also rejoined the Windows domain, but
>> nothing is working. Does MSCHAP have any other dependency on the system,
>> that PAP doesn't? I don't know where else to look.
>>
>
> In raddb/modules/mschap on the first system. ntlm_auth line is still
> commented out there. It's enabled on the second server.

No, it's there and uncommented on both. In fact I blew away the entire 
/etc/raddb directory on the failing server, and replaced it with the 
contents of /etc/raddb from the working one, so the configs have to be 
identical, right?

-Mike



More information about the Freeradius-Users mailing list