FreeRADIUS + Cisco + Active Directory
Rashad Hall
trynot24 at gmail.com
Wed Jan 6 07:34:11 CET 2016
Is there a way to check Active Directory Group Membership without using
LDAP from the post-auth section?
On Mon, Dec 28, 2015 at 2:26 PM, Rashad Hall <trynot24 at gmail.com> wrote:
> Thank you. I will try from the page you posted and seek additional help if
> I run into any problems.
>
> On Mon, Dec 28, 2015 at 2:21 PM, Alan DeKok <aland at deployingradius.com>
> wrote:
>
>> On Dec 28, 2015, at 5:18 PM, Rashad Hall <trynot24 at gmail.com> wrote:
>> >
>> > There are two separate policies (virtual servers: WIFI and NETdevs) for
>> > each authentication method. The debug output is only for the NETdevs
>> > virtual server which does not use EAP-TLS. Again the wireless policy is
>> > solid and we have been running for several months with no problems,
>> server
>> > is not broken I just can't get the right order I guess. The new policy
>> is
>> > where I am having trouble, I am guessing I am to use PAP and authorize
>> with
>> > ntlm_auth?
>>
>> That will work. Again, there are detailed instructions on the web page
>> I posted.
>>
>> Alan DeKok.
>>
>>
>> -
>> List info/subscribe/unsubscribe? See
>> http://www.freeradius.org/list/users.html
>>
>
>
More information about the Freeradius-Users
mailing list