Hi Alan, please I'm lost....I don't know what file to edit and how... Your tutorial use ntlm_atuth for mschap, and I've configured this because I tell you everything worked Ok, except when I add this new virtual server. Please can you tell me how can I do in order to force ntlm_auth for the user logins ??? Can you detail in more details please, either setting Auth-Type manually or not ??? Thanks again, ADAM 2017-09-28 12:32 GMT-03:00 Alan DeKok <aland@deployingradius.com>:
On Sep 28, 2017, at 11:07 AM, Adam Cage <adamcage27@gmail.com> wrote:
Dear Alan, I've followed your advice and it works OK, but not in the way I want:
- Virtual server defined in /etc/freeradius/sites-available/ips
- This virtual server file has the following authentication section:
authenticate { ntlm_auth ... }
Which says "it's allowed to use ntlm_auth as one of the authentication methods", not "this request should use ntlm_auth".
- When I try to login the user, I get the error:
ERROR: No authenticate method (Auth-Type) found for the request: Rejecting the user Failed to authenticate the user.
But if I edit /etc/freeradius/users file adding at top (and maintaining the ntlm_auth line in the virtual server file):
DEFAULT Auth-Type = ntlm_auth
now the users can authenticate and login OK !!!
Yes, because you have to tell the server how to authenticate the user.
The standard modules do this automatically. e.g. PAP sets Auth-Type PAP, CHAP sets Auth-Type CHAP, etc.
If none of the modules set Auth-Type, you have to do it manually.
Alan DeKok.
- List info/subscribe/unsubscribe? See http://www.freeradius.org/ list/users.html