claufer <[EMAIL PROTECTED]> wrote: > thanks for your response. Ok, I understand. I was reading some postings > on list about LDAP and they were always putting Auth-Type to LDAP > manually in users file.
That's for doing PAP authentication against the LDAP server. EAP isn't PAP, so you can't do EAP authentication against the LDAP server. > So theoretically there is no need at all for the users file if I > have my whole user attributes in LDAP? Yes. > Now I deleted the last entry "Auth-Type LDAP" in my users file and I got > the message below from debug. Could this error: "rlm_eap_leap: FAILED > incorrect NtChallengeResponse from AP" has to do with the fact that > there is no User-Password delivered from AP? No. It means that the client failed authentication. > Or am I wrong and there is a invisible User-Password delivered with > EAP Message? There is no User-Password in EAP. Alan DeKok. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
