We would like to use MS IAS as a RADIUS server for a centralized
router management.
We were able to make it work perfectly in PAP mode but as this exposes
passwords we would like to use MS CHAP.
When we just switch to MS CHAP (on the router and IAS) the
authentication fails with AUTH_FAILURE. As there is no messages in
Active Directory logs we conclude that the real authentication has
never happened and the request has been rejected by IAS itself.
Has anyone been able to make it work with MS CHAP?
Do we need to activate reverse password encryption in Windows to make
it work?
Radius authentication ... We would like to use MS IAS as a RADIUS server for a centralized ...router management.... When we just switch to MS CHAP the ...authentication fails with AUTH_FAILURE. ... (microsoft.public.internet.radius)
Radius authentication ... We would like to use MS IAS as a RADIUS server for a centralized ...router management.... When we just switch to MS CHAP the ...authentication fails with AUTH_FAILURE. ... (comp.dcom.sys.cisco)
Re: Radius authentication ... We would like to use MS IAS as a RADIUS server for a centralized ...router management.... When we just switch to MS CHAP the ...authentication fails with AUTH_FAILURE. ... (microsoft.public.internet.radius)
Re: How does IAS authenticate using Active Directory ... For CHAP, the NAS generates a random challenge ... packet to the RADIUS server with the CHAP username as the User-Name ... placed in the Request Authenticator field of the Access-Request ... troubleshooting RADIUS using IAS"... (microsoft.public.internet.radius)
Re: How does IAS authenticate using Active Directory ... now since we now know that IAS needs to retreive the user's password ... > CHAP ID and CHAP username. ... > packet to the RADIUS server with the CHAP username as the User-Name ... (microsoft.public.internet.radius)
