12 Feb
2025
12 Feb
'25
7:08 a.m.
On Feb 12, 2025, at 4:52 AM, Adnan RIHAN <axel50397@gmail.com> wrote:
For my information, why skip ntlm_auth in the case I'm receiving PAP, as I'm already using ntlm_auth for mschap?
Using LDAP is simpler, faster, and has fewer intermediate pieces. You can: a) use an existing LDAP connection to check PAP passwords b) fork ntlm_auth which connects over a socket to winbind which connects to Samba which uses 1990s NT protocols to talk to Active Directory. Which one is faster and is less likely to fail? Alan DeKok.