Hi
I´m using Freeradius 1.0.2 and Samba 3.0.11 on a FreeBSD 5.0.3. I´m
authenticating wireless clients on a Windows PDC using PEAP/MSCHAPV2
with ntlm_auth an winbind and it works fine for the users account
authentication.
Is it possible to authenticate the Windows XP computer account in this
environment ?
Here is the radius log:
Wed Mar 16 15:50:00 2005 : Info: (other): SSL
negotiation finished successfully
Wed Mar 16 15:50:00 2005 : Info: rlm_eap_tls: Received EAP-TLS ACK message Wed Mar 16 15:50:00 2005 : Info: rlm_eap_mschapv2: Issuing Challenge Wed Mar 16 15:50:00 2005 : Auth: Login incorrect: [host/computer11.PRGS.RS/<no User-Pas sword attribute>] (from client localhost port 0) Wed Mar 16 15:50:00 2005 : Auth: Login incorrect: [host/computer11.PRGS.RS/<no User-Pas sword attribute>] (from client AP.RPR port 6 cli 000f3dac614b) Wed Mar 16 15:50:13 2005 : Info: rlm_eap_tls: Length Included Wed Mar 16 15:50:13 2005 : Error: TLS_accept:error in SSLv3 read client certificate A Wed Mar 16 15:50:13 2005 : Info: rlm_eap_tls: Received EAP-TLS ACK message Wed Mar 16 15:50:13 2005 : Info: rlm_eap_tls: Length Included Wed Mar 16 15:50:13 2005 : Info: (other): SSL negotiation finished successfully Wed Mar 16 15:50:13 2005 : Info: rlm_eap_tls: Received EAP-TLS ACK message Wed Mar 16 15:50:13 2005 : Info: rlm_eap_mschapv2: Issuing Challenge Wed Mar 16 15:50:34 2005 : Auth: Login OK: [PRGS\\USUARIO123/<no User-Password attr ibute>] (from client localhost port 0) Wed Mar 16 15:50:34 2005 : Auth: Login OK: [PRGS\\USUARIO123/<no User-Password attr ibute>] (from client AP.RPR port 6 cli 000f3dac614b) The client is authenticated, but the computer isn´t.
Thanks in advance,
Dagoberto |
- XP Computer Account Authentication Dagoberto Luiz Schonardie
- Re: XP Computer Account Authentication Michael Griego