it is needed to force pap usage? I thought pap was supposed
to always be used when no other mod took care of it (fallthrough).
Regards,
Bram.
Ivan Kalik wrote:
Use unlang to set Auth-Type PAP even if pap returns noop.
Ivan Kalik
Kalik Informatika ISP
Dana 28/5/2008, Bram Matthys
in case, but same problem.
Ivan Kalik wrote:
= not :=. Or check if Auth-Type already exists.
Ivan Kalik
Kalik Informatika ISP
Dana 29/5/2008, Bram Matthys (Syzop) [EMAIL PROTECTED] piše:
Thanks for the hint. What would be the best place and way to do this?
Putting this before pap
Hi Alan,
Alan DeKok wrote:
Bram Matthys (Syzop) wrote:
Thanks for the hint. What would be the best place and way to do this?
Putting this before pap in authorize { }:
update control {
Auth-Type := PAP
}
does indeed make pap work, but breaks anything
Alan DeKok wrote:
I don't think you got my point. If you want to AUTHENTICATE using
ntlm_auth_pap... then call it in the AUTHENTICATION section. Calling it
in the AUTHORIZATION section is not AUTHENTICATION.
You need to:
a) set Auth-Type = ntlm_auth_pap in the authorize{} section
While I've EAP-TTLS w/EAP-MSCHAPv2 working now with ntlm_auth, I'd also like
to have EAP-TTLS w/PAP working with ntlm_auth (mostly because the client
software I use [securew2] does not save user credentials with mschap, and
does save them with pap. And just to offer more options to other
Thanks Alan, for all your answers hints.
Upgrading to 2.0.4 did the trick, everything seems to work fine now.
Alan DeKok wrote:
...
ttls {
default_eap_type = mschapv2
Are you using EAP-MSCHAPv2, or MS-CHAPv2? See the comments above this
Hi all,
I'd like to use EAP-TTLS with MS-CHAP(v2), so I can use SecureW2 with
Freeradius. To be more exact, I'd be using ntlm_auth, so that wireless users
will be able to get on the wireless network using their usual windows
username / password.
I'm using FreeRadius 2.0.3. I've seen several
7 matches
Mail list logo