MSCHAPv2 fails to authenticate against OpenDirectory with error 5100 (0x13ec)
Stefan Paetow
Stefan.Paetow at jisc.ac.uk
Sat Jun 13 17:59:11 CEST 2015
>Actually I resolved the MS-CHAP error: the method was not enabled in our
>OD
>Password Server (perhaps this is now the default in Server v4, since we
>have no record of having disabled it).
>
>Enabling the method simply involved adding it the
>dsAttrTypeNative:apple-enabled-auth-mech attribute in
>the /config/dirserv OD record (and then changing user passwords in order
>to
>generate appropriate hashes). The Apple FR build is now working fine.
This definitely needs documenting then.
Stefan Paetow
Moonshot Industry & Research Liaison Coordinator
t: +44 (0)1235 822 125
gpg: 0x3FCE5142
xmpp: stefanp at jabber.dev.ja.net
skype: stefan.paetow.janet
jisc.ac.uk
Jisc is a registered charity (number 1149740) and a company limited by
guarantee which is registered in England under Company No. 5747339, VAT
No. GB 197 0632 86. JiscĀ¹s registered office is: One Castlepark, Tower
Hill, Bristol, BS2 0JA. T 0203 697 5800.
Jisc Collections and Janet Ltd. is a wholly owned Jisc subsidiary and a
company limited by guarantee which is registered in England under Company
No. number 2881024, VAT No. GB 197 0632 86. The registered office is:
Lumen House, Library Avenue, Harwell, Didcot, Oxfordshire, OX11 0SG. T
01235 822200.
>
More information about the Freeradius-Users
mailing list