iPad PEAP MSCHAPv2
Óscar Remírez de Ganuza Satrústegui
oscarrdg at unav.es
Thu Feb 25 14:00:24 CET 2016
On Thu, Feb 25, 2016 at 1:24 PM, <A.L.M.Buxey at lboro.ac.uk> wrote:
> Hi,
>
> use the winbind connection pool (upgrade to samba 4.2.x or 4.3.x)
> toavoid using ntlm_auth and the legacy winbind method
>
I am thinking freeradius will authenticate MSCHAPv2 faster if it gets the
NT-password from LDAP, as with winbind it needs to communicate with the
domain controllers.
In our configuration freeradius already connects with LDAP to get the
userPassword (and groups for authorization), so it seems easier to take the
nt-password too.
Am I wrong guessing this solution will be faster authenticating mschapv2?
Again, thank you so much for your help.
Regards,
*Oscar Remírez de Ganuza Satrústegui*
IT Services
Universidad de Navarra
Tel. +34 948425600 x803130
http://www.unav.edu/web/it/
More information about the Freeradius-Users
mailing list