(RADIATOR) EAP and LDAP

[Chris Hills]

Chris Hills wrote:

> Jim
>
> We are using OpenLDAP 2.2 and Samba 2.x.
>
> It is a little frustrating because we are planning a migration to 
> Active Directory in the near future. I have set up a test domain, and 
> it works flawlessly using PEAP-EAP-TLS!
>
> Regards
>
I have had some partial success, it is now authenticating successfully 
using radpwtst using mschap-v2:-

Thu Jun  9 11:16:12 2005: DEBUG: Handling request with Handler 
'Realm=ne-worcs.ac.uk'
Thu Jun  9 11:16:12 2005: DEBUG:  Deleting session for 
studentuser at ne-worcs.ac.uk, 203.63.154.1, 1234
Thu Jun  9 11:16:12 2005: DEBUG: Handling with Radius::AuthLDAP2:
Thu Jun  9 11:16:12 2005: INFO: Connecting to xxx, port 389
Thu Jun  9 11:16:12 2005: INFO: Attempting to bind to LDAP server 
ldap-red.svc.ne-worcs.ac.uk:389
Thu Jun  9 11:16:12 2005: DEBUG: LDAP got result for 
uid=studentuser,xxx,o=NEW College,c=UK
Thu Jun  9 11:16:12 2005: DEBUG: LDAP got ntPassword: 
E5810F3C99AE2ABB2232ED8458A61309
Thu Jun  9 11:16:12 2005: DEBUG: Radius::AuthLDAP2 looks for match with 
studentuser at ne-worcs.ac.uk
Thu Jun  9 11:16:12 2005: DEBUG: Radius::AuthLDAP2 ACCEPT:
Thu Jun  9 11:16:12 2005: DEBUG: AuthBy LDAP2 result: ACCEPT,
Thu Jun  9 11:16:12 2005: DEBUG: Access accepted for 
studentuser at ne-worcs.ac.uk

However it is still not working with the supplicant and nas (XPSP2, 3Com 
4400 (now running 5.11s)).

Regards

-- 
Chris Hills
IT Services
North East Worcestershire College

--
Archive at http://www.open.com.au/archives/radiator/
Announcements on radiator-announce at open.com.au
To unsubscribe, email 'majordomo at open.com.au' with
'unsubscribe radiator' in the body of the message.