Connect. Communicate. Collaborate. Securely.

Home » Kerio User Forums » Kerio Control » OSX, Radius and Open Directory
  •  
fishtech

Messages: 598
Karma: 14
Send a private message to this user
Hi,

I am using Radius (with Control 8.5) via Apple Airport Base Station to authenticate against Open Directory on OSX Yosemite Server?

I receive the following error in the Control Security log when a user tries to authenticate:


[22/Sep/2015 12:20:49] Authentication: RADIUS: Client: 192.168.0.151: Invalid password for NT/Kerberos user username
[22/Sep/2015 12:21:03] Authentication: RADIUS: Client: 192.168.0.151: Invalid password for NT/Kerberos user username
[22/Sep/2015 12:21:57] Authentication: RADIUS: Client: 192.168.0.151: Invalid password for NT/Kerberos user username
[22/Sep/2015 12:25:00] Authentication: RADIUS: Client: 192.168.0.151: Invalid password for NT/Kerberos user username
[22/Sep/2015 12:25:13] Authentication: RADIUS: Client: 192.168.0.151: Invalid password for NT/Kerberos user username


Is this configuration supported?

Thanks,

ft.
  •  
fishtech

Messages: 598
Karma: 14
Send a private message to this user
Hi,

Can an Airport Extreme Base Station authenticate against Control's RADIUS Server when Control is authenticating against Open Directory?

Thanks,

ft.
  •  
Brian Carmichael (Kerio)

Messages: 625
Karma: 63
Send a private message to this user
It's not possible to use Open Directory with RADIUS authentication. It is noted in the documentation here http://kb.kerio.com/1648

Brian Carmichael
Senior Technical Marketing Engineer | Kerio
Stay Connected Anytime, Anywhere. Discover Kerio Cloud!
  •  
fishtech

Messages: 598
Karma: 14
Send a private message to this user
Thanks for the clarification.

Request is made under suggest idea at: http://feedback.kerio.com/forums/141042-kerio-control/sugges tions/10461705-allow-radius-to-work-with-open-directory

In my opinion the documentation is not clear that RADIUS to OD Is not supported. It says only that MS-CHAPv2 us not supported in connecting to OD.

It also states "Kerio Control only supports Active Directory" which is incorrect - OD is supported by Control in other contexts.

Perhaps it should state "RADIUS authentication through Kerio Control only supports Active Directory"?

Thanks,

ft.

[Updated on: Thu, 29 October 2015 16:57]

  •  
Brian Carmichael (Kerio)

Messages: 625
Karma: 63
Send a private message to this user
I agree that it's not very clear. I will discuss your feedback with the documentation team.

Brian Carmichael
Senior Technical Marketing Engineer | Kerio
Stay Connected Anytime, Anywhere. Discover Kerio Cloud!
Previous Topic: Directory Server cannot bind to ldap server
Next Topic: Connect to Local Network with Kerio VPN
Goto Forum:
  


Disclaimer:
Kerio discussion forums are intended for open communication between forum members and may contain information and material posted by members which may be useful in learning about Kerio products. The discussion forums are not intended to provide technical support for any specific product. Any information implied or expressed in the discussion forums is that of the posting member. Kerio is in no way responsible for the information posted in the forums, or its accuracy. Kerio employees may participate in the discussions, but their postings do not represent an offical position of the company on any issues raised or discussed. Kerio reserves the right to monitor and maintain the forums to promote free and accurate exchange of information.

Current Time: Fri Mar 31 02:33:22 CEST 2017

Total time taken to generate the page: 0.01111 seconds
.:: Contact :: Home ::.
Powered by: FUDforum 3.0.4.