Adam.Bishop at jisc.ac.uk
Tue Jun 26 18:42:34 CEST 2018
Not strictly a FreeRADIUS issue, but hopefully there are a few people on the list that have already solved the problem.
Has anyone got FreeRADIUS working against AD using realmd (https://www.freedesktop.org/software/realmd/)?
I've got local login working (I can su to a user) and it has samba as a dependency, but ntlm_auth says:
[root at jrs002a ~]# ntlm_auth --username adamb
NT_STATUS_NO_SUCH_USER: The specified account does not exist. (0xc0000064)
[root at jrs002a ~]# wbinfo -t
checking the trust secret for domain SAMBA via RPC calls failed
wbcCheckTrustCredentials(SAMBA): error code was NT_STATUS_NO_SUCH_DOMAIN (0xc00000df)
Which of course means FreeRADIUS fails to authenticate users.
Not sure if I need to be looking at poking realmd to make it configure winbind differently, or if I can poke FreeRADIUS to route authentication requests via SSSD.
(I can of course, rip out realmd and write smb.conf by hand, but it'd be nice if I could have something to manage it all for me).
gpg: E75B 1F92 6407 DFDF 9F1C BF10 C993 2504 6609 D460
Jisc is a registered charity (number 1149740) and a company limited by guarantee which is registered in England under Company No. 5747339, VAT No. GB 197 0632 86. Jisc’s registered office is: One Castlepark, Tower Hill, Bristol, BS2 0JA. T 0203 697 5800.
Jisc Services Limited is a wholly owned Jisc subsidiary and a company limited by guarantee which is registered in England under company number 2881024, VAT number GB 197 0632 86. The registered office is: One Castle Park, Tower Hill, Bristol BS2 0JA. T 0203 697 5800.
More information about the Freeradius-Devel