Mailing Lists: Apple Mailing Lists
Image of Mac OS face in stamp
 
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

OD - issues with VPN auth

Greetings,

We use an OD server (10.5.4) to authenticate two other 10.5.4 servers running the stock VPN. Each provides access to separate portions of internal nets.

It has worked flawlessly for months, but this weekend, both vpns stopped authenticating users. There were no errors in the OD logs, except for this repeating message in /var/log/system.log any time someone tried to connect:

Jul 28 09:23:45 (hostname) /usr/sbin/PasswordService[54]: wrong-sized secret 32
Jul 28 09:23:45 (hostname) /usr/sbin/PasswordService[54]: Unexpected State Reached in MS-CHAPv2 plugin

The second we re-entered a user's password in WGM in OD, they could log in again via VPN.

We also authenticate users via OD for Kerio mail (Kerberos), and this worked fine throughout the problem.

So it seems to be an issue on the OD server, related specifically to authenticating via MS-CHAPv2, or even more specifically, MS-CHAPv2 with the stock VPN server.

Thanks for any insights you can provide. Not sure if this is a bug, or if there is something I am overlooking.
_______________________________________________
Do not post admin requests to the list. They will be ignored.
Macos-x-server mailing list (email@hidden)
Help/Unsubscribe/Update your Subscription:
http://lists.apple.com/mailman/options/macos-x-server/email@hidden

This email sent to email@hidden


Visit the Apple Store online or at retail locations.
1-800-MY-APPLE

Contact Apple | Terms of Use | Privacy Policy

Copyright © 2007 Apple Inc. All rights reserved.