To stop a valid AD account from being authenticated you need to avoid
ntlm_auth:
testuser MS-CHAP-Use-NTLM-Auth := 0, Auth-Type := Reject
Ivan Kalik
Kalik Informatika ISP
Dana 30/4/2008, "rmp dmd" <rmp.dmd1229@gmail.com> piše:
-
>Hi,
>
>We have a wireless network that uses freeRadius integrated with AD for
>authentication. There are some test user accounts on AD that I would like
>to deny access on our Wireless and VPN.
>
>I have tried "How do I deny access to a specific user, or group of users" on
>FAQ but it is not working. I'm guessing that this is not the correct
>method.
>
>Please help me on how to set-up correctly.
>
>Thanks!
>Roehl
>
>
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html