Could use some help setting up freeradius ttls-pap with ldap backend serving NT-passwords

Arjan Sinnige arjan at
Mon Jan 5 21:36:31 CET 2015


THX for the answer, I did follow your guide, although openLDAP is not really covered, but it helped with the initial setting up.

>> The mailing list won't allow me to post my full config and output. (>100KB) so I've put it up at a website :
>  We don't need the config.  Just the debug output.
The debug output is there as well.

> You *do* need to edit raddb/sites-enabled/inner-tunnel, and enable "ldap".  Just like you did with raddb/sites-enabled/default.
Both in authorize AND authenticate ? or just authorize ?

>> [eap] Either EAP-request timed out OR EAP-response to an unknown EAP-request
> That's a problem with the access point.  The access point is SUPPOSED to send a "State" attribute in the packet.  It's not doing that.
> Throw your access point in the garbage, and buy one that works.
The access point at home is a cisco/Linksys EA2700 for testing. Will try updating firmware and otherwise will try to get one of the Apple Extremes in from work.

Hardware error..   :-(

THX again.

More information about the Freeradius-Users mailing list