Recommendation
Alan DeKok
aland at deployingradius.com
Tue Aug 17 08:44:25 CEST 2010
Paul Dugas wrote:
> On Mon, Aug 16, 2010 at 5:02 PM, Alan DeKok <aland at deployingradius.com> wrote:
>> Use PEAP. Ensure passwords are in a form compatible with PEAP:
>
> My LDAP directory contains NT, LM, and SSHA passwords but not
> clear-text so, if I'm following correctly, I need to look into using
> ntlm_auth.
No. I have no idea why you concluded that.
FreeRADIUS needs a password for authentication. That's it.
> I've actually already gotten some of this working. Following the
> one-step-at-a-time advice, I've gotten PEAP working with PAP in the
> inner tunnel. The FR2 package is far simpler than when I originally
> set this up with FR1.
Yup.
If you have the LDAP module listed in the "inner-tunnel", then you're
well on your way to getting it all to work.
Alan DeKok.
More information about the Freeradius-Users
mailing list