Freeradius2.1.3 + Fedora9 + PEAP + AD = problem

Alan Buxey A.L.M.Buxey at lboro.ac.uk
Mon Feb 14 17:07:07 CET 2011


Hi,

first off, i dont think this is a SAMBA issue...thats just me though - the
SAMBA issue manifests itself in the authentication phase where ntlm_auth
blows up (or rather is a damp squib)

> is there any progress resolving this issue? I have samba 3.5.6 on FC14
> and
> have the SAME problem like I've had with FC9/10, Freeradius2 and samba
> included with distribution.
> The problem is I cant rollback to older Samba version as it does not
> support
> Windows 2008R2 domain....

using 3.0.33 with 2008R2 here - I'd be very suprised if anything released
after that version didnt work with 2008R2....

> !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
> WARNING: !! EAP session for state 0xbed60aebbaf213e9 did not finish!
> WARNING: !! Please read
> http://wiki.freeradius.org/Certificate_Compatibility
> WARNING:
> !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!

is your config on the new distro the same as that on the old distro?  there
really is no reason why you cant just clone/copy the configs if its the same
version of FR!  I'm wondering if something else hasnt been enabled/checked
here. either that of its pointing to an OpenSSL issue - which would be nice (not)

2.1.11 has some extra tweaks in the PEAP code - might try the GIT release just to check?

alan



More information about the Freeradius-Users mailing list