Fwd: (RADIATOR) AD/LDAP and PEAP question
mikem at open.com.au
Fri Jun 13 05:08:40 CDT 2003
At present, the only way you could implement PEAP-MSCHAPV2 is to use an AuthBy
with a plaintext password. If you are using AuthBy LDAP2, then the LDAP
database must contain a plaintext password. I dont think the standard AD
schema falls into this category.
On Fri, 13 Jun 2003 06:21 pm, Hugh Irvine wrote:
> Begin forwarded message:
> > From: "Joao Martins" <jmartins at cic.ua.pt>
> > Date: Fri Jun 13, 2003 02:29:26 Australia/Melbourne
> > To: <radiator at open.com.au>
> > Subject: (RADIATOR) AD/LDAP and PEAP question
> > Hi!
> > I believe that is not possible use LDAP and PEAP authentication
> > together, if LDAP passwords are encrypted (NT hash, as Mike McCauley
> > explained to me). So, I'm asking if this is possible with Radiator:
> > * I have an Active Directory / LDAP based on Microsoft Windows 2000
> > Server.
> > * I have Radiator running on Linux RedHat box.
> > * I want to authenticate my wireless users with PEAP, using user
> > access information on Windows 2000 AD/LDAP.
> > Has anyone implemented a scenario like this?
> > Any suggestions???
> > Thanks.
> > Cheers,
> > João Martins
> > =======================================================================
> > Centro de Informática e Comunicações Email: jmartins at cic.ua.pt
> > Universidade de Aveiro Phone: +351 234 370099
> > 3810-193 Aveiro Ext: 22299
> > Portugal Web: http://www.cic.ua.pt/
> > ===
> > Archive at http://www.open.com.au/archives/radiator/
> > Announcements on radiator-announce at open.com.au
> > To unsubscribe, email 'majordomo at open.com.au' with
> > 'unsubscribe radiator' in the body of the message.
> NB: have you included a copy of your configuration file (no secrets),
> together with a trace 4 debug showing what is happening?
Mike McCauley mikem at open.com.au
Open System Consultants Pty. Ltd Unix, Perl, Motif, C++, WWW
24 Bateman St Hampton, VIC 3188 Australia http://www.open.com.au
Phone +61 3 9598-0985 Fax +61 3 9598-0955
Radiator: the most portable, flexible and configurable RADIUS server
anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald,
Platypus, Freeside, TACACS+, PAM, external, Active Directory, EAP, TLS,
TTLS, PEAP etc on Unix, Windows, MacOS etc.
Archive at http://www.open.com.au/archives/radiator/
Announcements on radiator-announce at open.com.au
To unsubscribe, email 'majordomo at open.com.au' with
'unsubscribe radiator' in the body of the message.
More information about the radiator