freeradius + ntlm_auth, broken?
Alan Buxey
A.L.M.Buxey at lboro.ac.uk
Thu Mar 8 23:56:00 CET 2012
Hi,
>
> > Check the winbind log files,
>
> Did that already. Nothing interesting there, only lines like
> [2012/03/08 14:32:17.115991, 3] winbindd/winbindd_misc.c:417(winbindd_priv_pipe_dir)
> [25675]: request location of privileged pipe
> [2012/03/08 14:32:17.117136, 6] winbindd/winbindd.c:840(winbind_client_request_read)
> closing socket 26, client exited
>
> > and perhaps try using "strace -f -p <freerad.pid> -o log" to
> > watch process execution.
>
> I already did that to get the command line. When I run that line manually I get
> "login failed". T try to figure out how to capture actual ntlm_auth output from within
> freerad process. Also, where freeradd gets the values for parameters
> MS-CHAP-Challenge = 0xd50bd065d4215da9
> MS-CHAP-Response = 0x00010000000000000000000000000000000000000000000000001e7c77d05691cb2822a6670bf0b458e251c4ef170a2c2fff
> ?
> Those seem to be wrong. When I use them manually from command line I get "login failed"
which version of samba are you running? versions 3.2 - 3.5 have b0rked return things -
fixed in latest 3.6 - on the command line things work okay but when a program is using the
return values they are wrong (or something to that affect. cant recall all the details
but the recomendation is 3.0.x (RHEL5 classic) or 3.6 (new distro). the mailing list
logs are filled with previous discussion.
alan
More information about the Freeradius-Users
mailing list