On Sun, 15 Jun 2003, Patrick Mcshane wrote: > Hello, > > Can ANYONE suggest ANY WAY that might allow CHAP requests > to be handled even though we use LDAP to handle authentication > and authorization? Our passwords (userpassword attribute) > are stored in cleartext in the latest OpenLDAP so at least > we are prepared for CHAP. Maybe some sort of hack in the > users file?
Please read the FAQ: http://www.freeradius.org/faq/#5.11 and doc/rlm_ldap It's all in there > > We occasionaly see the following error: > > Sun Jun 15 13:07:20 2003 : Auth: rlm_ldap: Attribute > "User-Password" is required for authentication. > Cannot use "CHAP-Password". This means that the ldap module is runing in the authenticate section instead of the chap module. You should try and fix that. > > > Our auth sections look like: > > authorize { > preprocess > chap > mschap > daily > attr_filter > suffix > ldap { > notfound = return > } > files > } > authenticate { > authtype PAP { > pap > } > authtype CHAP { > chap > } > authtype MS-CHAP { > mschap > } > authtype LDAP { > ldap > } > } > > Thanks, > Pat McShane > > > > > - > List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html > -- Kostas Kalevras Network Operations Center [EMAIL PROTECTED] National Technical University of Athens, Greece Work Phone: +30 210 7721861 'Go back to the shadow' Gandalf - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
