The passwords need to be extracted from eDirectory and passed to freeradius.
This guide is old - I haven't seen what needs to be done with the freeradius config, but it will tell you what you need to do on the Novell end. http://freeradius.org/doc/radiusadmin.pdf Mearl -----Original Message----- From: freeradius-users-bounces+jmdanner=samford....@lists.freeradius.org [mailto:freeradius-users-bounces+jmdanner=samford....@lists.freeradius.o rg] On Behalf Of Keith Ledford Sent: Thursday, January 15, 2009 2:41 PM To: FreeRadius users mailing list Subject: Re: 802.1x problems On Thursday, January 15, 2009 at 20:36:00, t...@kalik.net wrote: > Where is his password supposed to be? Ldap auth can't work with mschap, > so you need to send the password to freeradius. You need to enable ldap > instances in inner-tunnel virtual server (that will be doing mschap > auth). The passwords are in the ldap server (Novell). I don't understand what you mean by "so you need to send the password to freeradius" Can you either explain or point me to the proper doc? If ldap auth can't work with mschap what does everyone do to work with standard windows clients? I did enable ldap in the inner-tunnel config file. I did miss that before. Thanks! -- Keith Ledford <kledford AT uga DOT edu> Network Administrator EITS Network Engineering 706.542.0723 phone - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html