On Mon, 8 Sep 2003, [GB2312] 黄建波 wrote:
> Hi all!
> My userdata is in ldap and I want to use EAP-MD5 authentication.I configure
> radiusd.conf:
> modules {
> ldap {
> #password_header = "{CLEAR}"
> password_header = "{crypt}"
> #password_a=ttribute
> password_attribute = userPassword
> }
>
>
>
> The passwd_header in my ldap is crypt.But when I login,the Error message is :
> ldap_release_conn: Release Id: 0
> rlm_eap_md5: Challenge failed
> Login OK: [jbhuang] (from client gznet18 port 1024 cli )
> rad_recv: Access-Request packet from host 202.112.18.253:1024, id=182, length=166
> Sending Access-Reject of id 182 to 202.112.18.253:1024
> EAP-Message = 0x04020004
> Message-Authenticator = 0x00000000000000000000000000000000
> Why?
See http://www.freeradius.org/faq/#4.4
In short you are using crypted passwords not clear text. These will not work
with EAP-MD5 (or CHAP for that matter).
--
Kostas Kalevras Network Operations Center
[EMAIL PROTECTED] National Technical University of Athens, Greece
Work Phone: +30 210 7721861
'Go back to the shadow' Gandalf
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
