Authorize with SQL and/or AD with ntlm_auth !!!SOLVED!!!
Guillaume Chartrand
guillaume.chartrand at Collanaud.Qc.Ca
Fri Apr 4 15:14:52 CEST 2008
>> If in the radius.conf mschap section module I insert the same ntlm_auth
>> line of the exec. The sql don’t work but AD work. If I put nothing in
>> mschap section. The SQL works but not AD. So what I did make wrong
> 1) Do not create your own "ntlm_auth" module.
> 2) configure ntlm_auth in the mschap module
> 4) test that AD authentication works (ignoring SQL for now)
> 3) update the "authorize" section to look like this:
>authorize {
> preprocess
> sql
> if (ok) {
> update control {
> MS-CHAP-Use-NTLM-Auth := No
> }
> }
> ...
>
> After that, both AD and SQL should work.
> Alan DeKok.
Thank you it's working now with both AD and SQL.
Guillaume
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
More information about the Freeradius-Users
mailing list