Hi All,
is it possible to send the password from coova-chilli(for example) as
CHAP or MSCHAPv2 format to authenticate the clients on Kerberos through
FreeRADIUS?
Is it possible to do it without plain-text password?
Let me know, please.
Max
-
List info/subscribe/unsubscribe? See
Hi,
I'm moving step by step to get my system working...
My architecture is:
WEB.CLIENT---CHILLI(captive.portal)---FREERADIUS---OPENLDAP
My problem now is between chilli and opendirectory THRU freeradius.
Chilli supports chap or pap.
I'm not able to use chap because, it's not compatible with
I forgot to say that LDAP is on MAC OSX, so it's Opendirectory, not the
standard OPENLDAP...
WEB.CLIENT--CHILLI--FREERADIUS--OPENDIRECTORY
With radtest it works amazingly but not passing to chilli :(
Regards.
Hi,
I'm moving step by step to get my system working...
My architecture is:
enough PAP, Alan?
Do you have any idea, where it's the mistake?
Thanks
Max
Il 28/07/11 18.30, Alan DeKok ha scritto:
Massimiliano Tommasi wrote:
If I'm right, I'm able to convert the password to plain-text after
chilli and before radius..., or am I wronging?
No. It's impossible
That's working, Alan.
Thanks.
Max
Il 27/07/11 14.54, Alan DeKok ha scritto:
Massimiliano Tommasi wrote:
You are pretty right ;)
I have just recompiled freeradius with that module, which I need...
It seems to be what I need but ... I notice a lack of documentation for
that module..
I have
.., is the server asking for clear
password on the apple side?
I hope you can help me, one more time.
Cheers,
Max
Il 27/07/11 14.54, Alan DeKok ha scritto:
Massimiliano Tommasi wrote:
You are pretty right ;)
I have just recompiled freeradius with that module, which I need...
It seems to be what I need
You are right, Alan.
I hoped there was a solution to this but evidently it's not possible.
The only way is to disable the chap on the client-side.
Regards,
Max
Il 27/07/11 17.14, Alan DeKok ha scritto:
Massimiliano Tommasi wrote:
I got the first step..., FreeRadius and OpenDirectory
Hello guys,
I spent many days testing and working with free-radius and LDAP.
I got my app, was working authenticating on my LDAP thru FreeRadius, i
seed to be what I was looking for...
BUT
I tested everything with OpenLDAP on Linux but my real world, in this
case, is OpenLDAP on MAC OSX Server
, Alan DeKok ha scritto:
Massimiliano Tommasi wrote:
I tested everything with OpenLDAP on Linux but my real world, in this
case, is OpenLDAP on MAC OSX Server (open-directory) an it seems to be
pretty different.
See rlm_opendirectory. It's written by Apple, so I suspect it should
work
://www.freeradius.org/list/users.html
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
--
:: P u r p l e s r l
:: security and network
:: via Vittorio Veneto 8/B :: i-20091 Bresso - Milano
:: web: www.purplesrl.com
:: Massimiliano Tommasi
:: email: m.tomm...@purplesrl.com
Syntax of 2.x is really is quite different from 1.y _
That was my problem, thanks an regards.
Max
Il 20/07/11 18.07, u...@3.am ha scritto:
You're using LDAP with POSIX type users, including shadow passwords. I'm
pretty
sure this means you cannot use CHAP on the client end, but must use
11 matches
Mail list logo