Wow, thank you so much Alan.
It works flawlessly.

Thanks again.

Regards,


Oscar Remírez de Ganuza Satrústegui

Servicios Informáticos (Área de Infraestructuras)
Universidad de Navarra
Tel. +34 948425600 x803130
http://www.unav.es/SI/


On Wed, Feb 20, 2013 at 4:21 PM, Alan DeKok <aland@deployingradius.com> wrote:
Óscar Remírez de Ganuza Satrústegui wrote:
> We were able to /bypass/ the ntlm_auth on some users/groups defining on
> the users file the control item "MS-CHAP-Use-NTLM-Auth := No".
>
> But is there a way to configure freeradius such that if
> Cleartext-Password password is available it uses it, and otherwise it
> uses ntlm_auth to authenticate?

authorize {
        ...

        if (control:Cleartext-Password) {
                update control {
                        MS-CHAP-Use-NTLM-Auth := No
                }
        }

        ...

}

  Alan DeKok.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html