centos7 - Opsætning Windows 8.1 802.1x MS-CHAPv2 og freeradius problem

Indlæg af Hanne Mølgaard Plasc

Problem



Jeg kan ikke autentificere min Windows Laptop ved hjælp af MS-CHAPV2 og Freeradius.


Dette er den fejlmeddelelse, jeg får:


(7) eap\_mschapv2: # Executing group from file /etc/raddb/sites-enabled/inner-tunnel
(7) eap\_mschapv2:   authenticate {
(7) mschap: WARNING: No Cleartext-Password configured.  Cannot create NT-Password
(7) mschap: WARNING: No Cleartext-Password configured.  Cannot create LM-Password
(7) mschap: Creating challenge hash with username: maksim
(7) mschap: Client is using MS-CHAPv2
(7) mschap: ERROR: FAILED: No NT/LM-Password.  Cannot perform authentication
(7) mschap: ERROR: MS-CHAP2-Response is incorrect
(7)     [mschap] = reject
(7)   } # authenticate = reject
(7) eap: Sending EAP Failure (code 4) ID 8 length 4
(7) eap: Freeing handler
(7)       [eap] = reject
(7)     } # authenticate = reject
(7)   Failed to authenticate the user
(7)   Login incorrect (mschap: FAILED: No NT/LM-Password.  Cannot perform authentication): [maksim] (from client dlink port 0 via TLS tunnel)


Det siger, at jeg ikke har konfigureret Cleartext-Password, men jeg er ikke enig:


MariaDB [radius]> select * from radcheck;
+----+----------+--------------------+----+----------+
| id | username | attribute          | op | value    |
+----+----------+--------------------+----+----------+
|  9 | maksim   | User-Password      | := | 1q2w3e4r |
|  8 | maksim   | Cleartext-Password | := | 1q2w3e4r |
| 10 | maksim   | Auth-Type          | := | MS-CHAP  |
| 11 | maksim   | CHAP-Password      | := | 1q2w3e4r |
| 12 | maksim   | NT-Password        | := | 1q2w3e4r |
+----+----------+--------------------+----+----------+
5 rows in set (0.00 sec)

Bedste reference


Løst ved at ændre


driver = "rlm\_sql\_null"


til


driver = "rlm\_sql\_mysql" 


i


/etc/raddb/mods-enabled/sql