(RADIATOR) unix shadow - radiator - win2003 vpn auth?
Frank Danielson
fdanielson at csky.com
Thu Dec 22 08:01:38 CST 2005
Shadow passwords are encrypted so PAP will work to authenticate the
password. CHAP required plaintext passwords. If the client requires CHAP or
MS-CHAP you won't be able to use the shadow password file.
-----Original Message-----
From: Dick Visser [mailto:dick.visser at tienhuis.nl]
Sent: Thursday, December 22, 2005 8:04 AM
To: radiator at open.com.au
Subject: (RADIATOR) unix shadow - radiator - win2003 vpn auth?
Hi All
We have a Debian server (with local user accounts) that runs Radiator.
Our Cisco AP1200's use this server to autenticate wireless 802.1X users.
Radiator uses the shadow file to check the passwords.
We also have a Windows 2003 server that is used as VPN server.
I have some trouble setting this up, and have no idea how to configure it.
Users seems to authenticate only when PAP is selected, and that forces
"No Encryption" on the Windows box, which is not what I want.
When using PAP, the authentication seems to work OK (I get access
granted from the Radiator server), but then my VPN client comes up with:
Error 795: The Tunnel Type Radius atttribute for this user is not correct.
Does anybody have a similar config running?
Thanks,
--
* *** Dick Visser TIENHUIS Networking
** * * Touwbaan 68 P: +31206843731
* * *** 1018 HS Amsterdam F: +31208641420
* * * * The Netherlands M: +31622698108
* ** * IP-phone (SIP)/email: dick at tienhuis.nl
* * * PGP-key: http://www.tienhuis.nl/gpg.txt
* * * Webcam: http://www.tienhuis.nl/cam2.asx
*** ***
--
Archive at http://www.open.com.au/archives/radiator/
Announcements on radiator-announce at open.com.au
To unsubscribe, email 'majordomo at open.com.au' with
'unsubscribe radiator' in the body of the message.
--
Archive at http://www.open.com.au/archives/radiator/
Announcements on radiator-announce at open.com.au
To unsubscribe, email 'majordomo at open.com.au' with
'unsubscribe radiator' in the body of the message.
More information about the radiator
mailing list