I’ve seen in the commits that EAP-MSCHAPv2 is now supported.
In the company where I work they use SSTP + EAP-MSCHAPv2 and after searching online it seems this is the best shot I have at getting this connection working from my MacOS. In Windows this is natively supported.
The latest version is not available via Homebrew, so I’ve tried downloading it and compiling it myself and I have two doubts:
The first one is regarding pppd.h, which is missing. I’ve managed to bypass this by using –disable-ppp-plugin in autogen.sh. Could this impact me later?
I’ve tried running it but it seems it is always getting stucked at:
If I use debug=5 I see the following after “PPP EAP ID: 0 RESPONSE IDENTITY NAME: "USERNAME"”:
Sorry close this as duplicate, I first sent it using an email but there was some delay in the creation so I thought it hadn't went through and I created it directly using the web.
If you would like to refer to this comment somewhere else in this project, copy and paste the following link:
The pppd executable that ships with Mac OS-X probably isn't compatible (it's been a long while since I've tried). Apple patches their own version of pppd, and doesn't give you the local entitlements for you to build (that might have also changed since last I checked),
There is a patch circulating on the ppp-devel mailing list for EAP-MSCHAPv2, but that would only fix the problem once for all on Linux distributions. I don't think there is much that needs to be done for sstp-client project in that regards, once your pppd executable supports it, it should just work.
If you would like to refer to this comment somewhere else in this project, copy and paste the following link:
Just a thought, would it be possible to run the sstp-client in a docker image and on your Mac configure it to act as a "gateway" to your remote network? This could be a workaround for it...
If you would like to refer to this comment somewhere else in this project, copy and paste the following link:
I don't think the EAP-MSCHAPv2 patches has made it into PPP project yet, you'd have to use apt-get source ppp, sudo apt-get build-deps ppp, and dpkg-buildpackage to re-build pppd with the patches for EAP-MSCHAPv2 into it first. Then use sstp-client to connect to your server. You'd have to configure your Mac with routes via the docker image to your internal networks.
If you would like to refer to this comment somewhere else in this project, copy and paste the following link:
Tried it out but I'm unsure on how to compile ppp with the patch that I found on the mailing list of ppp, where you ask them to add it but they claim it is not from an RFC. Is there the possibility to reach you on Telegram/Skype/IRC and have you online for some minutes to see this through? Many thanks.
If you would like to refer to this comment somewhere else in this project, copy and paste the following link:
Tried it out but I'm unsure on how to compile ppp with the patch that I found on the mailing list of ppp, where you ask them to add it but they claim it is not from an RFC. Is there the possibility to reach you on Telegram/Skype/IRC and have you online for some minutes to see this through? Many thanks.
Looks like pppd just released a new version that will be picked up in the next version of debian (which will trickle down to Ubuntu as well). This version will have the eap-mschap changes in it!
If you would like to refer to this comment somewhere else in this project, copy and paste the following link:
Just a heads up, the Mac OSX version of pppd is not the one Debian uses. I had an image prepped for use with Docker, but when you run Docker on Mac via VirtualBox, it doesn't work using the "base" or standard minimal virtual machine. It requires a beefed up image with PPP support compiled in. Since I didn't hear anything, I put that effort on ice.
If you would like to refer to this comment somewhere else in this project, copy and paste the following link:
Good afternoon,
I’ve seen in the commits that EAP-MSCHAPv2 is now supported.
In the company where I work they use SSTP + EAP-MSCHAPv2 and after searching online it seems this is the best shot I have at getting this connection working from my MacOS. In Windows this is natively supported.
The latest version is not available via Homebrew, so I’ve tried downloading it and compiling it myself and I have two doubts:
The first one is regarding pppd.h, which is missing. I’ve managed to bypass this by using –disable-ppp-plugin in autogen.sh. Could this impact me later?
I’ve tried running it but it seems it is always getting stucked at:
If I use debug=5 I see the following after “PPP EAP ID: 0 RESPONSE IDENTITY NAME: "USERNAME"”:
Many thanks,
Arnau
Sorry close this as duplicate, I first sent it using an email but there was some delay in the creation so I thought it hadn't went through and I created it directly using the web.
Hi Arnau,
The pppd executable that ships with Mac OS-X probably isn't compatible (it's been a long while since I've tried). Apple patches their own version of pppd, and doesn't give you the local entitlements for you to build (that might have also changed since last I checked),
There is a patch circulating on the ppp-devel mailing list for EAP-MSCHAPv2, but that would only fix the problem once for all on Linux distributions. I don't think there is much that needs to be done for sstp-client project in that regards, once your pppd executable supports it, it should just work.
Just a thought, would it be possible to run the sstp-client in a docker image and on your Mac configure it to act as a "gateway" to your remote network? This could be a workaround for it...
Hi Eivind and thanks for the quick response. I'll try your approach during this week and see if I get it to work. Many thanks!
Cool!
I don't think the EAP-MSCHAPv2 patches has made it into PPP project yet, you'd have to use apt-get source ppp, sudo apt-get build-deps ppp, and dpkg-buildpackage to re-build pppd with the patches for EAP-MSCHAPv2 into it first. Then use sstp-client to connect to your server. You'd have to configure your Mac with routes via the docker image to your internal networks.
Tried it out but I'm unsure on how to compile ppp with the patch that I found on the mailing list of ppp, where you ask them to add it but they claim it is not from an RFC. Is there the possibility to reach you on Telegram/Skype/IRC and have you online for some minutes to see this through? Many thanks.
You able to drop me an email on eivnaes [at] yahoo.com
Tried it out but I'm unsure on how to compile ppp with the patch that I found on the mailing list of ppp, where you ask them to add it but they claim it is not from an RFC. Is there the possibility to reach you on Telegram/Skype/IRC and have you online for some minutes to see this through? Many thanks.
EAP-MSCHAPv2 Support
Sent from sourceforge.net because you indicated interest in https://sourceforge.net/p/sstp-client/discussion/1499218/
To unsubscribe from further messages, please visit https://sourceforge.net/auth/subscriptions/
Hi,
Looks like pppd just released a new version that will be picked up in the next version of debian (which will trickle down to Ubuntu as well). This version will have the eap-mschap changes in it!
That is great news. I've seen that Debian 10.8 will be released on 2021-02-06. I'll wait until then and then compile sstp and see if it works. Thanks!
Hey Arnau,
Just a heads up, the Mac OSX version of pppd is not the one Debian uses. I had an image prepped for use with Docker, but when you run Docker on Mac via VirtualBox, it doesn't work using the "base" or standard minimal virtual machine. It requires a beefed up image with PPP support compiled in. Since I didn't hear anything, I put that effort on ice.