PEAP EAP-TLS not replying with Access-Accept message
Chris Studt
chris at mythdragon.com
Fri May 22 23:41:17 CEST 2009
>> Please post:
>>
>> 1) OS you're using to run RADIUS.
>> 2) version of Active Directory
>> 3) version of Samba
>>
>> Then, try *downgrading* samba to an earlier version. Keep going
>> backwards until it works. Then, post the version of Samba where it
>> starts working.
>>
>> I've asked the Samba people if they know anything more about this, but
>> have seen no response. If this is common, I'll open a bug with them,
>> and see if it can get larger attention.
>
> Thanks for the help, yes I am using Samba between AD and Freeradius.
>
> The OS I'm running on the Freeradius server is Ubuntu 8.10.
> I'm running a OpenSSL patched package of Freeradius 2.1.0+dfsg-0ubuntu2.
> The Active Directory server is Windows Server 2003.
> The version of Samba (and winbind) running is 3.2.3-1ubuntu3.4.
>
> I will begin downgrading my Samba and see if that changes anything.
Samba was exactly the issue. I downgraded from the "ubuntu intrepid"
version of Samba (3.2.3-1ubuntu3.4) to the "ubuntu hardy" version of Samba
(3.0.28a-1ubuntu4.7) and my Windows XP clients started authenticating
right away.
Thanks guys, you saved me quite a bit of headache.
Chris Studt
More information about the Freeradius-Users
mailing list