"Chan Min Wai (System Administrator)" <[EMAIL PROTECTED]> wrote: > My question is. > 1) Can I do Auth using MS MD5-Challenge (Which Password input is EAP), > with a back end Ldap Server.
I think you have your terminology confused. There is no "MS MD5-Challenge" system. EAP isn't a password input system. What you can do is to store clear-text passwords in an LDAP database. When an Access-Request comes into the server, the server can pull the clear-text password for the user from LDAP. The server can then use this clear-text password to perform any kind of authentication. > 3) When I Change the configuration to the switch and Win-Xp, here come > the userpassword Attribution need (I suspect that freeradius need it > from the Input rather checking them with my ldap server) I think you're referring to an error message in the server (which you didn't quote). You MUST supply the server with a clear-text password for the usr. Without that password, the server CANNOT authenticate someone. > So Please If anyone know the way to make ldap + win xp (MD5-challenge) + > freeradius) To work without using TLS Or anyway. Please do give a little > help to me. You have to use TLS. See the "howto" documents. Alan DeKok. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
