NTLMv2 with FreeRADIUS
John McCarthy
midactsmystery at gmail.com
Wed Apr 9 15:33:02 CEST 2014
Thanks for your guys work on the FreeRADIUS project. It works really well
and was easy to setup and understand.
I have a FreeRADIUS version 3.0.2 server that is used to with a Ubiquiti
UAP-PRO access point using WPA2-Enterprise to authenticate Active Directory
using PEAP. Everything works great and it authenticates users correctly.
But for PCI compliance, they require that we not use NTLMv1, they require
us to use NTLMv2. Is there any way to get FreeRADIUS to work with NTLMv2
(or a more secure protocol for PCI compliance's sake)?
I have found the post below that basically says it isn't possible. Maybe
you can use a flag to tell the Active Directory Domain Controller that the
traffic is NTLMv2...but that sounded pretty sketchy to me. Does anyone else
have any ideas?
Thanks for your help!
http://freeradius.1045715.n5.nabble.com/definitive-info-on-authenticating-to-AD-via-NTLMv2-td5719249.html
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.freeradius.org/mailman/private/freeradius-users/attachments/20140409/c78aea0f/attachment-0001.html>
More information about the Freeradius-Users
mailing list