Machine auth fails but user auth works
A.L.M.Buxey at lboro.ac.uk
A.L.M.Buxey at lboro.ac.uk
Wed Dec 9 00:38:16 CET 2015
Hi,
> I changed to "--domain=CFS.UOGUELPH.CA" and now it does not get any domains for machine authentication:
do...you did more than that...for some reason you now have *2* --username bits!!
> Executing: /usr/bin/ntlm_auth --request-nt-key --username=%{%{mschap:User-Name}:-00} --username=%{%{Stripped-User-Name}:-%{%{User-Name}:-None}} --domain=CFS.UOGUELPH.CA --challenge=%{%{mschap:Challenge}:-00} --nt-response=%{%{mschap:NT-Response}:-00}:
thus:
> (8) mschap : EXPAND --username=%{%{mschap:User-Name}:-00}
> (8) mschap : --> --username=CCS-252$
> (8) mschap : EXPAND --username=%{%{Stripped-User-Name}:-%{%{User-Name}:-None}}
> (8) mschap : --> --username=host/CCS-252.cfs.uoguelph.ca
...err, yes...and NOW the server uses this broken version. delete that second entry so just CCS-252$
is used as you had before.
alan
More information about the Freeradius-Users
mailing list