Hello Nikunj, you can use ldap for peap only if you can grab the password in clear text or with NT-Hash
http://deployingradius.com/documents/protocols/compatibility.html So how do you configure that ? Or join the packetfence server to the domain. Regards Fabrice Le mer. 23 nov. 2022 à 08:47, Nikunj Vacchani via PacketFence-users < packetfence-users@lists.sourceforge.net> a écrit : > Hello > > > > I m able to authenticate with local user but I m not able to authenticate > with my ldap server users, > > > > I m facing error, > > > > PacketFence-KeyBalanced = "1acc010ea4ece6928d7a7f0c37444c0f" > > PacketFence-Radius-Ip = "10.20.40.153" > > Event-Timestamp = "Nov 17 2022 12:42:35 IST" > > Acct-Session-Id = "05000132" > > NAS-Port = 53 > > NAS-IP-Address = 11.11.11.240 > > PacketFence-NTLMv2-Only = "" > > EAP-Message = > 0x020800431a0208003e319e88dd03b1c260dbc55155c80f85eed00000000000000000eed23b3c6bbfe523b45578ae1d11d4211d136139d7394e6a005252555c74657374 > > FreeRADIUS-Proxied-To = 127.0.0.1 > > EAP-Type = MSCHAPv2 > > MS-CHAP2-Response = > 0x08529e88dd03b1c260dbc55155c80f85eed00000000000000000eed23b3c6bbfe523b45578ae1d11d4211d136139d7394e6a > > Calling-Station-Id = "54:05:db:0a:ae:a4" > > Stripped-User-Name = "test" > > User-Name = "RRU\\test" > > PacketFence-Outer-User = "RRU\\test" > > NAS-Port-Type = Ethernet > > PacketFence-Domain = "RRUAD01" > > MS-CHAP-Challenge = 0xa88d981c98c2e8b5e0512896662f75d3 > > Realm = "default" > > MS-CHAP-User-Name = "RRU\\test" > > State = 0x0e2308c40e2b12014ce5e92689785f0a > > Module-Failure-Message = "chrooted_mschap: Program returned code (1) and > output 'The attempted logon is invalid. This is either due to a bad > username or authentication information. (0xc000006d)'" > > Module-Failure-Message = "chrooted_mschap: External script says: The > attempted logon is invalid. This is either due to a bad username or > authentication information. (0xc000006d)" > > Module-Failure-Message = "chrooted_mschap: MS-CHAP2-Response is incorrect" > > User-Password = "******" > > SQL-User-Name = "RRU\\\\test" > > RADIUS Reply > > MS-CHAP-Error = "\010E=691 R=0 C=fefbe43603701f99844df4f72dfc01ac V=3 > M=Authentication rejected" > > EAP-Message = 0x04080004 > > Message-Authenticator = 0x00000000000000000000000000000000 > > > > > > Anyone have idea, how to resolve this error. > > > > Thanks & Regards, > > Nikunj Vachhani. > > Network Engineer. > > 99091 10490 > > > > *From:* Nikunj Vacchani via PacketFence-users < > packetfence-users@lists.sourceforge.net> > *Sent:* 16 November 2022 07:29 PM > *To:* packetfence-users@lists.sourceforge.net > *Cc:* Nikunj Vacchani <nikun...@allotgroup.com> > *Subject:* [PacketFence-users] ldap authentication failed > > > > CAUTION: This email originated from outside of the organization. Do not > click links or open attachments unless you recognize the sender and know > the content is safe. > > > > Hello everyone, > > > > I m facing issue when I m trying to authenticate with LDAP user. > > > > ERROR, > > > > chrooted_mschap: Program returned code (1) and output 'The attempted logon > is invalid. This is either due to a bad username or authentication > information. (0xc000006d)' > > > > how to resolve this issue. > > > > Thanks & Regards, > > Nikunj Vachhani. > > Network Engineer. > > 99091 10490 > > > > DISCLAIMER : The content of this email is confidential and intended for > the recipient specified in message only. It is strictly forbidden to share > any part of this message with any third party, without a written consent of > the sender. If you received this message by mistake, please reply to this > message and follow with its deletion, so that we can ensure such a mistake > does not occur in the future. > DISCLAIMER : The content of this email is confidential and intended for > the recipient specified in message only. It is strictly forbidden to share > any part of this message with any third party, without a written consent of > the sender. If you received this message by mistake, please reply to this > message and follow with its deletion, so that we can ensure such a mistake > does not occur in the future. > _______________________________________________ > PacketFence-users mailing list > PacketFence-users@lists.sourceforge.net > https://lists.sourceforge.net/lists/listinfo/packetfence-users >
_______________________________________________ PacketFence-users mailing list PacketFence-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/packetfence-users
