FreeRADIUS Authentication with AD Without Joining AD

Alan DeKok aland at deployingradius.com
Mon May 24 14:03:41 CEST 2021


On May 24, 2021, at 7:58 AM, Vertigo Altair <vertigo.altair at gmail.com> wrote:
> 
> I'm trying to use FreeRADIUS with an Active Directory Server. I've read the
> documentations but the server that FreeRADIUS runs has to join the Active
> Directory as a client.
> 
> Is there any way to authenticate users with AD without joining the AD
> server?

   No.

> P.S.: I'm using MSCHAP protocol.

  Doubly no.

  If FreeRADIUS gets User-Password, then it can just do an LDAP "bind as user" to Active Directory.

  But for MS-CHAP, it is *required* to use Samba.

  Alan DeKok.




More information about the Freeradius-Users mailing list