Hi all
I'm trying to figure out if there's a way to get our wifi clients to authenticate with PEAP against a stored password in a SQL database... We store their passwords in an MD5 hash in a database and I have a working query to retrieve that password. I've put an authentication source together for this and can see it's working through debug logs, so that side of things is fine.
However, I can't figure out how to get clients authenticating. The reason I want to use PEAP rather than a captive portal is that I want this CPPM service to test a few different authentication sources out and apply profiles based on the matching source. Those sources are AD and other RADIUS servers (which works fine).
I've tried a number of things... a standalone service with PAP as the method, a service with EAP-PEAP as the method and EAP-MD5 as the inner method, ... no matter what I do, I can't get clients (in particular, I'm testing with an iPhone) to authenticate at all, against an SQL database with a hashed password for the user.
Should there be a way to do this? At one stage, I had it working by using a Cleartext password against this SQL database, although that was a few weeks ago now and I can't remember how. But I just can't get it working with an MD5 password. I'd assume that the password, when received from the client, could simply be hashed and compared against the result from the SQL server, but I'm not an expert in 802.1x/PEAP/EAP and so there's probably a good reason this isn't working.
Appreciate any help!
Brett