Daniel Davidson <[EMAIL PROTECTED]> wrote: > Thanks for the info, now we are getting somewhere I just have unchecked > the "validate server certificate" area for now. Now I am getting a > rejection. Any ideas?
You said you were storing the passwords in LDAP, but the debug log doesn't show the LDAP module being used: > Processing the authorize section of radiusd.conf > modcall: entering group authorize for request 6 > modcall[authorize]: module "preprocess" returns ok for request 6 > modcall[authorize]: module "chap" returns noop for request 6 > modcall[authorize]: module "mschap" returns noop for request 6 > rlm_realm: No '@' in User-Name = "dbdavids", looking up realm NULL > rlm_realm: No such realm "NULL" > modcall[authorize]: module "suffix" returns noop for request 6 > rlm_eap: EAP packet type response id 6 length 90 > rlm_eap: No EAP Start, assuming it's an on-going EAP conversation > modcall[authorize]: module "eap" returns updated for request 6 > users: Matched DEFAULT at 152 > modcall[authorize]: module "files" returns ok for request 6 > modcall: group authorize returns updated for request 6 There's no mention of LDAP, so the server doesn't have the NT password. > rlm_mschap: No User-Password configured. Cannot create LM-Password. > rlm_mschap: No User-Password configured. Cannot create NT-Password. > rlm_mschap: Told to do MS-CHAPv2 for dbdavids with NT-Password > rlm_mschap: FAILED: No NT/LM-Password. Cannot perform authentication. Yup. Alan DeKok. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
