LDAP/MSCHAP
Whitlow, Michael
mwhitlow at bumail.bradley.edu
Thu Nov 10 23:54:50 CET 2011
All,
I am really close to a successful Freeradius implementation for 802.1X
wireless using LDAP authentication on the back end.
Here is what I have:
- RADTEST / clear text Freeradius password from "users" file /
WORKS GREAT
- Windows XP 802.1X PEAP/MS-CHAPv2 wireless client / clear text
Freeradius password from "users" file / WORKS GREAT
- RADTEST / LDAP credentials / WORKS GREAT
- Windows XP 802.1X PEAP/MS-CHAPv2 wireless client / LDAP
credentials / NO GO
Here is the debug output. I have read others online with these symptoms
but nothing I have found yet will help me.
[mschapv2] +- entering group MS-CHAP {...}
[mschap] No Cleartext-Password configured. Cannot create LM-Password.
[mschap] No Cleartext-Password configured. Cannot create NT-Password.
[mschap] Creating challenge hash with username: mwhitlow
[mschap] Told to do MS-CHAPv2 for mwhitlow with NT-Password
[mschap] FAILED: No NT/LM-Password. Cannot perform authentication.
[mschap] FAILED: MS-CHAP2-Response is incorrect
Thanks much in advance for the help!
Mike
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.freeradius.org/pipermail/freeradius-users/attachments/20111110/0f6663e6/attachment.html>
More information about the Freeradius-Users
mailing list