|
Well, I had the LDAP auth working when I passed a cleartext password, so I assumed that they were stored in the clear. (I am not the administrator of the eDirectory server that I am authenticating against) I attempted to use the Microsoft built-in 802.1x client in conjunction with my wireless system, but it is not working when I use this method. The Windows clients are using PEAP-MSCHAPv2 and the authentication works if I use a local database on the freeradius server. As soon as I switch to a LDAP DB the authentication fails saying "rlm_ldap: search failed".
>>>[EMAIL PROTECTED] 10/04 2:08 pm >>>
"Christopher Price" <[EMAIL PROTECTED]> wrote:
>I am running freeradius 1.0.0 and I am attempting to configure an LDAP
>backend DB to authenticate Windows users. The Windows users are using
>PEAP with MSCHAPv2. Earlier I got the LDAP authentication working with
>clear passwords, but now that the passwords are being hashed.
Which passwords are being hashed? Are the passwords in LDAP hashed,
or clear-text?
> I know that LDAP stores cleartext passwords,
Are you sure? If it did, then MS-CHAP would work.
Alan DeKok.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
|
- Re: MYSQL Accounting Table Size? Keith Yoder
- Re: MYSQL Accounting Table Size? Kostas Kalevras
- Re: FreeRadius + LDAP Andreas Haumer
- Re: FreeRadius + LDAP Alan DeKok
- Re: FreeRadius + LDAP Andreas Haumer
- Re: FreeRadius + LDAP Alan DeKok
- listen on freeradius 1.0.1 Lew A
- Re: listen on freeradius 1.0.1 Kevin Bonner
- Re: listen on freeradius 1.0.1 Lew A
- Re: FreeRadius + LDAP Stefan . Neis
- Re: FreeRadius + LDAP Christopher Price
- Re: FreeRadius + LDAP Alan DeKok
- Re: FreeRadius + LDAP Christopher Price
- Re: FreeRadius + LDAP Alan DeKok
- Re: FreeRadius + LDAP Christopher Price
- Re: FreeRadius + LDAP Alan DeKok
- Re: FreeRadius + LDAP Christopher Price
