Still not working. When I added krb5 { } at the radius.conf file, it gave me the following error at startup /usr/local/etc/raddb/radiusd.conf[589]: Unexpected end of section Errors reading radiusd.conf Regards, 2008/2/8, A.L.M.Buxey@lboro.ac.uk <A.L.M.Buxey@lboro.ac.uk>:
Hi,
Thank you all.
But how do I do this? Does any one has a tutorial about it?
add the required parts to the radius config files to enable krb5 (direct password check) against the AD - you will also need to ensure your kerberos environment is sane and works
eg run the command
kinit your_user_id
on the command line to validate that your machine can get a kerberos ticket
the bits you need to add to the radius config are:
krb5 { }
to the module stanza (radiusd.conf)
and
Auth-Type krb5 { krb5 }
to the authenticate stanza (radiusd.conf in 1.1.x and sites-enabled/default in radiusd 2.x )
you MAY need to set "Auth-Type = krb5" for the required user or NAS setting depending on your config!
alan
- List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html