Could use some help setting up freeradius ttls-pap with ldap backend serving NT-passwords
Arjan Sinnige
arjan at audiodude.nl
Mon Jan 5 21:36:31 CET 2015
Alan,
THX for the answer, I did follow your guide, although openLDAP is not really covered, but it helped with the initial setting up.
>> The mailing list won't allow me to post my full config and output. (>100KB) so I've put it up at a website :
>> http://www.audiodude.nl/ldapconfig.txt
> We don't need the config. Just the debug output.
The debug output is there as well.
> You *do* need to edit raddb/sites-enabled/inner-tunnel, and enable "ldap". Just like you did with raddb/sites-enabled/default.
Both in authorize AND authenticate ? or just authorize ?
>> [eap] Either EAP-request timed out OR EAP-response to an unknown EAP-request
> That's a problem with the access point. The access point is SUPPOSED to send a "State" attribute in the packet. It's not doing that.
> Throw your access point in the garbage, and buy one that works.
The access point at home is a cisco/Linksys EA2700 for testing. Will try updating firmware and otherwise will try to get one of the Apple Extremes in from work.
Hardware error.. :-(
THX again.
More information about the Freeradius-Users
mailing list