Wireless WPA2 enterprise Radius authentication
Maurice James
midnightsteel at msn.com
Thu Oct 28 00:18:04 CEST 2010
How do I do it?
Radius to ldap works no problem
Wireless to radius to ldap does not
-----Original Message-----
From: freeradius-users-bounces+midnightsteel=msn.com at lists.freeradius.org [mailto:freeradius-users-bounces+midnightsteel=msn.com at lists.freeradius.org] On Behalf Of Sven Hartge
Sent: Wednesday, October 27, 2010 3:47 PM
To: freeradius-users at lists.freeradius.org
Subject: Re: Wireless WPA2 enterprise Radius authentication
Maurice James <midnightsteel at msn.com> wrote:
> [ldap] looking for check items in directory...
> [ldap] userpassword -> User-Password == "{SSHA}5wzxRoUPX/rLkS9hY1HztczPN8u5m/dGDzKvdg=="
This will not work. You need a cleartext password. This SSHA-Hash is only good for PAP, any challenge response method like MSCHAPv2 won't function with this.
> [mschap] No Cleartext-Password configured. Cannot create LM-Password.
> [mschap] No Cleartext-Password configured. Cannot create NT-Password.
> [mschap] Told to do MS-CHAPv2 for MJames with NT-Password [mschap]
> FAILED: No NT/LM-Password. Cannot perform authentication.
> [mschap] FAILED: MS-CHAP2-Response is incorrect
> ++[mschap] returns reject
And this is the result --> reject.
Grüße,
Sven.
--
Sig lost. Core dumped.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
More information about the Freeradius-Users
mailing list