Hello All,
I kindly request for help on EAP-MD5 with packetfence 11 with Microsoft AD
as the authentication source.
I am trying to authenticate an older telephony device and unfortunately, it
offers only EAP-MD5. The device is rejected with the message eap_md5:
Cleartext-Password is required for EAP-MD5 authentication
The pf can see the device in the AD and seems to do its job. However the
radius response is not good and we get the message "eap_md5:
Cleartext-Password is required for EAP-MD5 authentication"
Authenticating against 'msad_voptech_phones' in context 'admin'
Authentication SUCCEEDED against msad_voptech_phones (Authentication
successful.)
Matched against msad_voptech_phones for 'authentication' rule
ar_voptech_phones
set_role : voptech_test
set_unreg_date : 2038-01-18
Did not match against msad_voptech_phones for 'administration' rules
Authenticating against 'msad_voptech_phones' in context 'portal'
Authentication SUCCEEDED against msad_voptech_phones (Authentication
successful.)
Matched against msad_voptech_phones for 'authentication' rule
ar_voptech_phones
set_role : voptech_test
set_unreg_date : 2038-01-18
Did not match against msad_voptech_phones for 'adminis
Auditing
Auth Status
Reject
Auth Status
eap
Auto Registration
No
Calling Station Identifier
00:a8:59:f9:82:0b
Computer Name
N/A
EAP Type
MD5
Event Type
Radius-Access-Request
IP Address
Is a Phone
No
Created at
2022-02-02 16:43:38
Node Status
N/A
Domain
Profile
N/A
Realm
null
Reason
eap_md5: Cleartext-Password is required for EAP-MD5 authentication
Role
N/A
Source
N/A
Stripped User Name
voptechtest
User Name
voptechtest
I tried to change the database hashing to plain text but no luck. Can
someone help or guide me in the correct direction?
Thanks for all your support.
_______________________________________________
PacketFence-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/packetfence-users
