[ previous ] [ next ] [ threads ]
 
 From:  Jonathan Karras <jkarras at karras dot net>
 To:  Lloyd Palfrey <lloyd at wsufftrust dot org dot uk>
 Cc:  m0n0wall dash dev at lists dot m0n0 dot ch
 Subject:  Re: [m0n0wall-dev] Radius Mac Authentication failure with IAS
 Date:  Wed, 03 May 2006 09:39:21 -0600
Lloyd Palfrey wrote:
> I've created the username and password in active directory called
> 00:07:e9L:81:66:39 - However the prewindows2000 name cant have ":" so I have
> to remove them for that.
> 
> Every time I try to access a page through the captive portal it takes me to
> the username/password box. Failing to auto authenticate. It sends the
> username and password but that fails. I've also tried sending the mac
> address as the username and password manually.. This also fails.
> 
> Can anyone shed any light on this? Maybe the ":"'s should be removed from
> the mac addresses before it trys to auth?
> 
> Any help would be greatfull appreciated.
> 
> Many Thanks
> 

I have not used Win2K3 for my radius/LDAP combo but with my 
FreeRadius/OpenLDAP combo I did just as you said above.

I went into the "RADIUS MAC authentication" section of captive portal. 
Set the check box to enable. Then set a shared secret. I then used this 
secret as the password on the user who's username was the MAC with 
colon's. This seemed to work for me.

Jonathan