15 Oct
2013
15 Oct
'13
6:08 p.m.
Hi, On Tue, Oct 15, 2013 at 05:09:39PM -0400, Alan DeKok wrote:
Where "wait_limit" is a small C program. It would wait 5 seconds, and if ntlm_auth didn't return, kill it, and return a failure to radiusd.
I've just sent a pull request that adds an option 'timeout' to rlm_exec and 'ntlm_auth_timeout' to rlm_mschap. Defaults are both 10s (the current setting). The ntlm_auth timeout can only be reduced... I can't imagine a correctly functioning AD domain where a successful auth takes >10s. Cheers, Matthew -- Matthew Newton, Ph.D. <mcn4@le.ac.uk> Systems Specialist, Infrastructure Services, I.T. Services, University of Leicester, Leicester LE1 7RH, United Kingdom For IT help contact helpdesk extn. 2253, <ithelp@le.ac.uk>