Hi,
You can add NT / LM pairs to each LDAP user object. You must include the
samba.schema into the ldap server schemas.
Ex:
sambaNTPassword: CAF13D4F321E608B27FD75D2549BA53C
sambaLMPassword: 02D093CE93038E2FAAD3B435B51404EE
You can create these passwords using smbencrypt tool (deployed with
Daniel Gomes wrote:
I know this is a question which has been thoroughly asked and answered,
but after spending several days configuring, debugging, searching the
internet, rec-configuring, etc, I still can't get my freeradius server
to properly authenticate users (for a pptd server).
Go
Hey there,
first of all, thanks for all the tips!
Commenting them, in the order in which they came:
@peter lambrechtsen:
I actually had tried PAP before, but I gave up then because pptpd was
refusing clients without even consulting the RADIUS server... But I
noticed (a couple of minutes
Daniel Gomes wrote:
From the logs, and as I wrote on my initial cry for help, I could see
that the password wasn't being found, I just couldn't puzzle out why...
And yes, the users do have passwords on LDAP (we are using it to
authenticate many other applications), and as I wrote down, radtest
Wrong guess, i'ts OpenLDAP :)
Em 09-07-2010 13:04, Alan DeKok escreveu:
Daniel Gomes wrote:
From the logs, and as I wrote on my initial cry for help, I could see
that the password wasn't being found, I just couldn't puzzle out why...
And yes, the users do have passwords on LDAP (we are using
Daniel Gomes wrote:
Wrong guess, i'ts OpenLDAP :)
Then fix it so that it returns a password to FreeRADIUS.
It's an LDAP server. If it doesn't return a password when an LDAP
client queries it for a password, it's broken.
Alan DeKok.
-
List info/subscribe/unsubscribe? See
Well, as I mentioned (a couple of times now), the LDAP server was indeed
returning a password to FreeRADIUS, since radtest was always working
fine. So the problem wasn't in the LDAP server itself, because it does
return a password when an LDAP client queries it for a password (as I
also
Daniel Gomes wrote:
Well, as I mentioned (a couple of times now), the LDAP server was indeed
returning a password to FreeRADIUS, since radtest was always working
fine.
No, it wasn't returning a password to FreeRADIUS. Go *read* the debug
output. It will prove this.
When using PAP, the
Em 09-07-2010 13:59, Alan DeKok escreveu:
Daniel Gomes wrote:
Well, as I mentioned (a couple of times now), the LDAP server was indeed
returning a password to FreeRADIUS, since radtest was always working
fine.
No, it wasn't returning a password to FreeRADIUS. Go *read* the debug
Daniel Gomes wrote:
we are currently and successfully using it to
authenticate other services).\
Using PAP passwords.
Actually these application are probably just binding with the user's
credentials, but that's not relevant here.
sigh That's what I meant.
Well, it doesn't
Em 09-07-2010 17:12, Alan DeKok escreveu:
Daniel Gomes wrote:
we are currently and successfully using it to
authenticate other services).\
Using PAP passwords.
Actually these application are probably just binding with the user's
credentials, but that's not
Dear list,
I know this is a question which has been thoroughly asked and answered,
but after spending several days configuring, debugging, searching the
internet, rec-configuring, etc, I still can't get my freeradius server
to properly authenticate users (for a pptd server).
First of all, on the
Why not setup your NAS to use PAP, instead of MS-CHAP.
If you use MS-CHAP you will need to have NT Hash'es in your LDAP directory.
It would be far easier to have PAP authentication enabled on your NAS, then
it should work fine.
On Tue, Jul 6, 2010 at 3:59 AM, Daniel Gomes dgo...@ipfn.ist.utl.pt
13 matches
Mail list logo