I am running both TTLS and PEAP. Everything seems ok but the radius.log is
filling up fast with these error messages. Is the error log configurable?
Thu Apr 12 09:14:51 2007 : Error: TLS_accept:error in SSLv3 read client
certificate A
Thu Apr 12 09:14:51 2007 : Error: rlm_eap: SSL
Hi,
From radius.log, the symptom of the failure goes as follow
1. rlm_ldap receives constraint violation reply from ldap.
2. other authentication requests immediately followed the constraint
violation reply failed with incorrect login
sample radius log
-
Jan 12 13:44:05 : rlm_ldap:
I would like to know if anyone has a work around to support PEAP
(ms chap v2) client access authenticate against a LDAP server with bind operation.
Currently, retrieving clear text password from LDAP is not an option.
Thanks
Cedric
I would like to know if anyone has a work around to support PEAP (ms
chap v2) client access authenticate against a LDAP server with bind
operation. Currently, retrieving clear text password from LDAP is
not an option.
No this is not possible. Only way you can authenticate via LDAP
I have observed that some of the accounting records in the detail-mmdd
file contain User-Name value that does not match the ldap user
name that was used in the 802.1x authentication. The details entries correspond
to Mac clients were correct. But the Windows users running SecureW2 were
I have been looking for a way to maintain accurate wireless access and usage
information for security auditing purposes. The problem I have is that
wireless network users may choose to provide an alternative identity by
providing an outer identity in the supplicant software. Although the user
CHui [EMAIL PROTECTED] wrote:
Although it seems to work for me, I am not sure about the use of
attribute
Class for tracking user ID would interfere with other operation (like the
one attribute Class was originally designed for)?
It was designed for local sites to do whatever they wanted
7 matches
Mail list logo
