FR with AD authentication not working
Stefan Winter
stefan.winter at restena.lu
Sat Oct 28 11:27:58 CEST 2006
Hi,
> rad_recv: Access-Request packet from host 127.0.0.1:32772, id=101,
> length=61 User-Name = "<removed>"
> User-Password = "<removed>"
> NAS-IP-Address = 255.255.255.255
> NAS-Port = 0
> modcall[authorize]: module "mschap" returns noop for request 0
FreeRADIUS doesn't even try to do AD auth, because the incoming request does
not contain a MS-CHAP challenge. If you want to try AD auth, try it with a
_real_ client that speaks MS-CHAP.
If you send clear-text passwords, as in the packet below, you could simply
configure ldap {} to bind to the AD server, and then ntlm_auth would be
obsolete.
Stefan
--
This mail is guaranteed to be virus free because it was sent from a computer
running Linux.
--
Stefan WINTER
Fondation RESTENA - Réseau Téléinformatique de l'Education Nationale et de
la Recherche - Ingénieur de recherche
6, rue Richard Coudenhove-Kalergi
L-1359 Luxembourg
More information about the Freeradius-Users
mailing list