Wifi + Active Directory without ntlm
Клеусов Владимир Сергеевич
Kleusov.Vladimir at wildberries.ru
Thu May 14 15:32:28 CEST 2020
Ideally, I want to authenticate the domain user and if he is in the domain, check his group. If not in the group, do not connect to wifi. Is this possible without ntlm ?
14 мая 2020 г., в 16:07, Matthew Newton <mcn at freeradius.org<mailto:mcn at freeradius.org>> написал(а):
o do what? Just get policy information/groups etc, or to authenticate?
FreeRADIUS can use LDAP to query AD to get group information etc just fine. However, AD won't give you a password over LDAP. So in the vast majority of cases if you want to authenticate you need to use mschap.
More information about the Freeradius-Users