FreeRADIUS Authentication with AD Without Joining AD
Vertigo Altair
vertigo.altair at gmail.com
Mon May 24 14:17:33 CEST 2021
Thanks for replying..
If I understand correctly, firstly I have to use Samba and join the AD, and
after that use ntlm_auth for user authentication, right?
Thank you for your time.
On Mon, 24 May 2021 at 15:04, Alan DeKok <aland at deployingradius.com> wrote:
> On May 24, 2021, at 7:58 AM, Vertigo Altair <vertigo.altair at gmail.com>
> wrote:
> >
> > I'm trying to use FreeRADIUS with an Active Directory Server. I've read
> the
> > documentations but the server that FreeRADIUS runs has to join the Active
> > Directory as a client.
> >
> > Is there any way to authenticate users with AD without joining the AD
> > server?
>
> No.
>
> > P.S.: I'm using MSCHAP protocol.
>
> Doubly no.
>
> If FreeRADIUS gets User-Password, then it can just do an LDAP "bind as
> user" to Active Directory.
>
> But for MS-CHAP, it is *required* to use Samba.
>
> Alan DeKok.
>
>
> -
> List info/subscribe/unsubscribe? See
> http://www.freeradius.org/list/users.html
More information about the Freeradius-Users
mailing list