2008/1/10, [EMAIL PROTECTED] [EMAIL PROTECTED]:
Hi,
Hi,
I can't still figure it out why I can't access from Linux clients.
I use version 1.1.7 of freeradius. Linux client is a Fedora 8 system.
what is the linux client config?
i see the following in your debug
rlm_eap: Request found,
Ooops, because of the emotion I pasted old config files. Well here are
the fresh files:
prefix = /usr/local2
exec_prefix = ${prefix}
sysconfdir = ${prefix}/etc
localstatedir = ${prefix}/var
sbindir = ${exec_prefix}/sbin
logdir = ${localstatedir}/log/radius
raddbdir = ${sysconfdir}/raddb
2008/1/11, Arran Cudbard-Bell [EMAIL PROTECTED]:
[EMAIL PROTECTED] wrote:
Store cleartext passwords and all eap types will work. Real problem is
the encrypted password not the eap type.
Ivan Kalik
Kalik Informatika ISP
Dana 11/1/2008, Sergio Belkin [EMAIL PROTECTED] piše:
2008/1/11, Alan DeKok [EMAIL PROTECTED]:
Sergio Belkin wrote:
Alan, Thanks for clear up the confusion about EAP and PAP. But still I
don't understand this: Now I have a windows client working using
securew2 with PAP. If PAP is not into the tunnel
Then you are not using securew2.
It was
Store cleartext passwords and all eap types will work. Real problem is
the encrypted password not the eap type.
Ivan Kalik
Kalik Informatika ISP
Dana 11/1/2008, Sergio Belkin [EMAIL PROTECTED] piše:
2008/1/10, Ivan Kalik [EMAIL PROTECTED]:
...
rlm_ldap: Added password
2008/1/10, Ivan Kalik [EMAIL PROTECTED]:
...
rlm_ldap: Added password
{SSHA}F8XliBuxscoShNf0k7RxlC7niB7ISswp in check items
...
rlm_eap_md5: User-Password is required for EAP-MD5 authentication
...
You can't use encrypted passwords with EAP-MD5.
Yes, but my beloved boss want to use encrypted password in ldap :(
2008/1/11, [EMAIL PROTECTED] [EMAIL PROTECTED]:
Store cleartext passwords and all eap types will work. Real problem is
the encrypted password not the eap type.
Ivan Kalik
Kalik Informatika ISP
Dana 11/1/2008, Sergio Belkin
[EMAIL PROTECTED] wrote:
Store cleartext passwords and all eap types will work. Real problem is
the encrypted password not the eap type.
Ivan Kalik
Kalik Informatika ISP
Dana 11/1/2008, Sergio Belkin [EMAIL PROTECTED] piše:
2008/1/10, Ivan Kalik [EMAIL PROTECTED]:
...
Sergio Belkin wrote:
EAP-TTLS with PAP inner encryption.
But is is possible configure that so? If I tried default_eap_type =
pap and radius didn't start.
PAP is not an EAP type. The documentation makes this clear:
# If the request does not contain an EAP
2008/1/11, Arran Cudbard-Bell [EMAIL PROTECTED]:
[EMAIL PROTECTED] wrote:
Store cleartext passwords and all eap types will work. Real problem is
the encrypted password not the eap type.
Ivan Kalik
Kalik Informatika ISP
Dana 11/1/2008, Sergio Belkin [EMAIL PROTECTED] piše:
Sergio Belkin wrote:
Alan, Thanks for clear up the confusion about EAP and PAP. But still I
don't understand this: Now I have a windows client working using
securew2 with PAP. If PAP is not into the tunnel
Then you are not using securew2.
When you use TTLS + PAP, the passwords go in the
2008/1/11, Alan DeKok [EMAIL PROTECTED]:
Sergio Belkin wrote:
EAP-TTLS with PAP inner encryption.
But is is possible configure that so? If I tried default_eap_type =
pap and radius didn't start.
PAP is not an EAP type. The documentation makes this clear:
#
Hi,
Hi,
I can't still figure it out why I can't access from Linux clients.
I use version 1.1.7 of freeradius. Linux client is a Fedora 8 system.
what is the linux client config?
i see the following in your debug
rlm_eap: Request found, released from the list
rlm_eap: EAP/md5
rlm_eap:
...
rlm_ldap: Added password {SSHA}F8XliBuxscoShNf0k7RxlC7niB7ISswp in check
items
...
rlm_eap_md5: User-Password is required for EAP-MD5 authentication
...
You can't use encrypted passwords with EAP-MD5.
http://deployingradius.com/documents/protocols/compatibility.html
Ivan Kalik
Kalik
14 matches
Mail list logo
