Alan DeKok wrote:
> "Chan Min Wai (System Administrator)" <[EMAIL PROTECTED]> wrote:
>
>>Ok I've done this, putting clear-text password to the server, although I
>>think that this is not a good way. But for the time being let follow
>>your instruction ;)
>
>
> If you don't store clear-text passwords, then EAP WILL NOT WORK.
>
Ok That is fine :)
>
>>rad_recv: Access-Request packet from host 192.168.0.16:8021, id=11,
>>length=182
>
> ...
>
>> EAP-Message = 0x0202000b0165656c6f636b
>
>
> Ok, you are doing EAP.
>
>
>>rlm_ldap: Adding radiusAuthType as Auth-Type, value ldap & op=21
>
>
> That's your problem.
>
>
>>modcall: entering group Auth-Type for request 2
>>rlm_ldap: - authenticate
>>rlm_ldap: Attribute "User-Password" is required for authentication.
>> modcall[authenticate]: module "ldap" returns invalid for request 2
>
>
> LDAP doesn't know how to do EAP.
>
> Please READ the comments in "eap.conf".
>
> Do NOT set "Auth-Type := LDAP" for EAP requests.
>
> Alan DeKok.
I have no idea how to get ldap + Eap work in this way.
But just something in my mind... Should I put the ldap configuration inside:
md5 {
}
So when they know it is eap and md5 mode it will refer back to the ldap
to check the password?
Am I correct or wrong.
Sorry for asking something like this but I've no idea how tow of the
(LDAP + EAP) working together.
Thank you
Chan Min Wai
>
> -
> List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
