Freeradius with EAP/MSChap and Windows 2012
Mathieu Simon (Lists)
matsimon.lists at simweb.ch
Tue Jan 21 19:44:42 CET 2014
Hi
Am 21.01.2014 19:11, schrieb David Aldwinckle:
> The radiusd process can¹t read the response from winbind.
>
> http://wiki.freeradius.org/guide/FreeRADIUS-Active-Directory-Integration-HO
> WTO
>
> [...]
>
> setfacl -m u:radiusd:rx winbindd_privileged
>
> Or something similar. See
> http://www.suse.de/~agruen/acl/linux-acls/online/ or man setfacl for more
> information on POSIX ACLs!"
I remember being in that situation on my first setup with FreeRADIUS.
Actually is there something wrong (on Debian and alikes) to simply add
the user freerad to the winbindd_privileged group or is there a security
risk I don't realize in contrast to setfacl?
-- Mat
More information about the Freeradius-Users
mailing list