Exec and ntlm_auth
tnt at kalik.net
tnt at kalik.net
Wed Nov 25 23:04:16 CET 2009
> At 02:54 PM 11/25/2009, you wrote:
>>Just make it anothe file in the modules directory (like all the others).
>>Any file placed in that directory is authomatically included as a module.
>
> Can you provide an example of that file?
Example for exec ntlm_auth is in the guide.
> Also, on the web page for AD config it has:
> ntlm_auth = "/path/to/ntlm_auth --request-nt-key
> --username=%{mschap:User-Name:-None}
> --domain=%{mschap:NT-Domain:-MYDOMAIN}
> --challenge=%{mschap:Challenge:-00}
> --nt-response=%{mschap:NT-Response:-00}"
>
> the "-" is bolded in the NT-Domain such that it indicates that it
> should be replaced, but should it be
> --domain=%{mschap:NT-Domain:example.com}
> or
> --domain=%{mschap:NT-Domain:-example.com}
The second one. But that's for mschap requests.
Ivan Kalik
More information about the Freeradius-Users
mailing list