Hi everyone.
My problem is following:
I'm using freeradius 0.9.0.
I need to authenticate users by mschap v2.
The database is a quite sophisticated one in an Oracle.
So I want to authenticate by external script using Exec-Program-Wait.
With pap and chap it goes well, but with mschap it fails with an error:
auth: type "MS-CHAP"
modcall: entering group Auth-Type
rlm_mschap: No User-Password configured. Cannot create LM-Password.
rlm_mschap: No User-Password configured. Cannot create NT-Password.
rlm_mschap: No LM-Password or NT-Password attribute found. Cannot
perform MS-CHAP authentication.
modcall[authenticate]: module "mschap" returns fail
modcall: group Auth-Type returns fail
auth: Failed to validate the user.
Piece of config in users file:
DEFAULT Auth-Type = Accept
Service-Type = Framed-User,
Exec-Program-Wait = "/usr/local/bin/billing/login",
Framed-Protocol = PPP,
Idle-Timeout = 900,
Framed-Routing = None
If I put here plaintext user and password it passes ok.
In general I understand that some data (password) used by mschap core
module can't be received by it, but I have no clue how to bypass this.
Or how to fed it manually from my script.
Is it possible at all to use mschap and Exec-Program-Wait together?
I would kindly appreciate any help.
Thanks.
--
Dmitry Koval <[EMAIL PROTECTED]>
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
