NTLM Auth and mysql

Fri Jun 17 23:24:17 CEST 2011

Yup, maybe a M$ AD or MySQL forum?  More likely someone there has a "replication" - or at minimum a "dump all" script to take AD info and dump into MySQL.

I SORTA like the idea though - could come in handy when AD Admins won't cooperate with what you're trying to do.  But this assumes they're give you an account with at least RO/view (whatever) access to all AD objects you need to copy / replicate.

Our web team does some sort of batch process; reads AD via LDAP and updates mysql tables.  I THINK to enumerate new users, group memberships, etc. - so that's always an option.  Ie; read AD via LDAP and output to mysql using mysql calls/functions/, sql update/inserts, etc.

Actually, sounds like they do almost what you want - cause they determine application perms based on MySQL info....  If you're nice I'll ask someone about it :)

G

-----Original Message-----
From: freeradius-users-bounces+ggatten=waddell.com at lists.freeradius.org [mailto:freeradius-users-bounces+ggatten=waddell.com at lists.freeradius.org] On Behalf Of Sallee, Stephen (Jake)
Sent: Friday, June 17, 2011 4:06 PM
To: FreeRadius users mailing list
Subject: RE: NTLM Auth and mysql

I should also note that all the questions you asked are not in any way related to FreeRADIUS.

Jake Sallee
Godfather of Bandwidth
System Engineer
University of Mary Hardin-Baylor
900 College St.
Belton, Texas
76513
Fone: 254-295-4658
Phax: 254-295-4221

-----Original Message-----
From: freeradius-users-bounces+jake.sallee=umhb.edu at lists.freeradius.org [mailto:freeradius-users-bounces+jake.sallee=umhb.edu at lists.freeradius.org] On Behalf Of motaibi
Sent: Friday, June 17, 2011 10:08 AM
To: freeradius-users at lists.freeradius.org
Subject: NTLM Auth and mysql

Dear Guys,

i have this setup

Serv1: Linux Server CentOS 5.6 {
- Chillispot
- FreeRADIUS
- Apache
- Mysql
}

Serv2: Windows Server 2003 {
- Active Directory
}

now i will explain how i did setup this and what is my problem .

I integrated chillispot & mysql with FreeRADIUS .

When the client enter his username and password it's come to FreeRADIUS and do Authentication via NTLM-AUTH Active Directory to verfiy user entry Then do Authorization via mysql .

# If the user found in Active Directory only and not existing in Myql will login without any policy like Limited Download and login-time ..etc

# If the user found in Active Directory and Mysql will be login with policy .

How can i take the users on Active Directory and create them on mysql DB through some script php or else , lets say if after some time there many users created in Active Directory so they will not found in mysql .
How i do that Automatic not manual ?

I attached two example of my debuging mode in FreeRADIUS

http://freeradius.1045715.n5.nabble.com/file/n4499034/test.pdf test.pdf http://freeradius.1045715.n5.nabble.com/file/n4499034/user1.pdf user1.pdf 

I hope found someone solve my problem .

Thanks
Best Regards,
Metab

--
View this message in context: http://freeradius.1045715.n5.nabble.com/NTLM-Auth-and-mysql-tp4499034p4499034.html
Sent from the FreeRadius - User mailing list archive at Nabble.com.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

<font size="1">
<div style='border:none;border-bottom:double windowtext 2.25pt;padding:0in 0in 1.0pt 0in'>
</div>
"This email is intended to be reviewed by only the intended recipient
 and may contain information that is privileged and/or confidential.
 If you are not the intended recipient, you are hereby notified that
 any review, use, dissemination, disclosure or copying of this email
 and its attachments, if any, is strictly prohibited.  If you have
 received this email in error, please immediately notify the sender by
 return email and delete this email from your system."
</font>