Results 1 to 5 of 5

Thread: RADIUS on Zimbra with MS-CHAPv2

  1. #1
    Join Date
    Sep 2008
    Posts
    71
    Rep Power
    7

    Default RADIUS on Zimbra with MS-CHAPv2

    Dear all,

    I need to setup RADIUS based on the Zimbra LDAP for WiFi authentication. I currently have an setup where clients (Mac OS X) using TTLS-EAP can authenticate well against the LDAP based SSHA userPassword.

    Still I have clients (iPhone & iPad) which only provide the MS-CHAPv2 protocol - which does not provide a cleartext user-password. As the NT-Password instead will be created by the RADIUS pap module based on the LDAP plain text password to be being compared against the MS-CHAP password provided, this would still work fine...

    As long as Zimbra could provide a plain text password from its LDAP...

    Can somebody help if there is a solution available I did not try yet?

  2. #2
    Join Date
    Jun 2011
    Posts
    2
    Rep Power
    4

    Default does somebody have any success with it?

    Hello.

    I've run into the same issue trying to configure RADIUS auth against ZIMBRA LDAP using mschap-v2.
    Does somebody have any success with it?

    The only solution as I see is to install samba extension for zimbra. It should change LDAP schema. But I have no idea how it will change current production setup with list of users.

    Can you point me to description of the solution ?

  3. #3
    Join Date
    Sep 2008
    Posts
    71
    Rep Power
    7

    Default

    qwartyr,

    I once tried the samba plugin but gave up at the very beginning when I noticed it is not very handy to manage. I finally purchased a W2008 Server to host my domain users and do the authentication behind. Thus allows to run any authentication protocol even for group based multi SSID authentication... much easier During my evaluation I also tried OS X Server which was not an option for me as you would need a server for each group (Mac OS X would do the job if you could combine SSID name based rules with the OS X directory plugin).
    Having the OS X schema implemented into MS AD, I have to admit it works like a charm - although I would have preferred to run a pure Linux environment...

    Hope that helps you finding the right solution!

  4. #4
    Join Date
    Jun 2011
    Posts
    2
    Rep Power
    4

    Default

    Unfortunately, MS AD is not an option.
    Client uses Zimbra as central point for everything, and want to add functionality to be able to auth users from his wireless controller.

  5. #5
    Join Date
    Apr 2014
    Posts
    1
    Rep Power
    1

    Default

    O my God,

    I have a same question, and same problems. I want to use Zimbra via LDAP for WiFi Authentication.

    Anybody good solution for this problem?

Similar Threads

  1. Migrate Zimbra Server to VMware
    By Oasy in forum Administrators
    Replies: 11
    Last Post: 07-14-2010, 07:13 AM
  2. /tmp filling
    By Nutz in forum Administrators
    Replies: 8
    Last Post: 02-22-2008, 01:00 AM
  3. [SOLVED] Clamav problem ? What's happening ?
    By aNt1X in forum Installation
    Replies: 23
    Last Post: 02-14-2008, 04:43 AM
  4. Zimbra shutdowns every n hours.
    By Andrewb in forum Administrators
    Replies: 13
    Last Post: 08-14-2007, 08:55 AM
  5. zmtlsctl give LDAP error
    By sourcehound in forum Administrators
    Replies: 5
    Last Post: 03-11-2007, 03:48 PM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •