Bob McCormick clued me in on this. I thought this was about client certs. I have been succesfull authenticating with PEAP thanks to Kerry Hughes. I didn't have the users file configured right as I was including "Auth-Type" in the following line:
userid User-Password == "mypassword"
Now I am trying to get this working with LDAP. According to the docs there is a way to get the password from LDAP and the authenticate using CHAP. Is there a way to do this with PEAP/MS-CHAP?
The passwords in the LDAP directory are encrypted.
Thanks again,
-Barry
Alan DeKok wrote:
Barry Stewart <[EMAIL PROTECTED]> wrote:
I'm trying to use Freeradius to authenticate users in a wireless network. I don't wish to use certificates at all.
Then you can't authenticate users in a wireless network.
From what I've read it looks like I will need to use mschapv2 and
peap.
Which requires the use of a server-side certificate.
The comments in the eap.conf file say you need to configure the TLS module.
To use PEAP, yes.
I'm not quite sure how to do this if I'm not using certificates.
You can't. It's impossible.
The daemon won't start unless I uncomment out a few lines such as
the path to the certificate files.
Exactly.
Alan DeKok.
- List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
- List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
