LinuxQuestions.org
Share your knowledge at the LQ Wiki.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Software
User Name
Password
Linux - Software This forum is for Software issues.
Having a problem installing a new program? Want to know which application is best for the job? Post your question in this forum.

Notices


Reply
  Search this Thread
Old 11-23-2010, 04:10 PM   #1
jwstric2
Member
 
Registered: Jan 2004
Posts: 105

Rep: Reputation: 15
Radius + LDAP + EAP-PEAP


I read over the freeradius and openldap docs for a day and used a high level procedure at http://vuksan.com/linux/dot1x/802-1x-LDAP.html. I can successuly authenicate to the radius server with simple authenication:

Code:
[root@localhost ~]# echo "User-Name = "jonatstr", Password = "ggsg"" | radclient -x  localhost auth testing123
Sending Access-Request of id 244 to 127.0.0.1 port 1812
	User-Name = "jonatstr"
	Password = "ggsg"
rad_recv: Access-Accept packet from host 127.0.0.1 port 1812, id=244, length=80
	Tunnel-Private-Group-Id:0 = "10"
	Tunnel-Medium-Type:0 = 802
	Tunnel-Type:0 = VLAN
	Filter-Id = "Enterasys:version=1:policy=Enterprise User"
[root@localhost ~]#

Having problems with EAP-PEAP. I've attached the debug from radius and ldap user. I'm thinkin its something to do with the way Im dealing with windows users (ntpasswords). As you can see, there is a warning indicating possible password problems. TLS tunnel is properly setup, fails on challenges to the client...

Thanks in advance...
Attached Files
File Type: txt eapol_test.conf.peap.txt (168 Bytes, 48 views)
File Type: txt radius_debug.txt (41.7 KB, 28 views)
File Type: txt radius.ldif.txt (687 Bytes, 29 views)
 
Old 11-23-2010, 09:16 PM   #2
jwstric2
Member
 
Registered: Jan 2004
Posts: 105

Original Poster
Rep: Reputation: 15
So problems is definately in ldap, how I am storing the lm and nm passwords. I can store them in the users as cleartext-passwords and freeradius properly translates them. I'll have to mess with this a bit more ... suggestions still welcome.
 
Old 11-23-2010, 09:53 PM   #3
jwstric2
Member
 
Registered: Jan 2004
Posts: 105

Original Poster
Rep: Reputation: 15
In the innertunnel config file, I had to ensure ldap was before mschap. all is working now. will try and piece together a final doc to this forum...
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
WlanConnection - WPA2-EAP(PEAP;MSCHAPv2) How to configure? huberbauer Linux - Wireless Networking 5 10-02-2014 07:40 AM
Problem connecting Wi-Fi using EAP-PEAP sebelk Linux - Networking 2 10-07-2010 01:30 PM
FreeRadius and PEAP with EAP-MD5 Queenie245 Linux - Wireless Networking 0 11-18-2008 07:32 AM
Netgear WG511T, Xsupplicant and FreeRADIUS(EAP-PEAP) metallica1973 Linux - Wireless Networking 0 12-08-2006 12:16 PM
EAP and RADIUS and W2K metallica1973 Linux - Networking 7 09-21-2006 08:54 PM

LinuxQuestions.org > Forums > Linux Forums > Linux - Software

All times are GMT -5. The time now is 03:33 AM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration