Hi, that works, great :). Thanks! Another question: Is it possible to setup two or more sources with different auth-mechanisms: proxy -> ntlm_auth (pap) wlan -> ntlm_auth (peap) firewall -> pap plaintextfile How is it done, or should I use 3 server for that purpose? Regards Carsten Am 09.01.2014 10:48, schrieb Arran Cudbard-Bell:
On 9 Jan 2014, at 08:39, Carsten Czerner<carsten.czerner@leuphana.de> wrote:
Hi,
I tried to setup a radius server with ntlm_auth but it didn't work. I used this howto for the basic setup:
http://wiki.freeradius.org/guide/FreeRADIUS-Active-Directory-Integration-HOW...
And I made some progress:
- The ntlm_auth returned "ok" - The radius_server accepted the pap-auth from the user-file authorize { if (User-Password) { update control { Auth-Type := ntlm_auth } } }
authenticate { Auth-Type ntlm_auth { ntlm_auth } }
ntlm_auth should be called in authenticate, the decision to call it should be made in authorize.
the return code in the authenticate section is what determines whether the user will receive an Access-Accepr or Access-Reject.
Arran Cudbard-Bell<a.cudbardb@freeradius.org> FreeRADIUS Development Team
FD31 3077 42EC 7FCD 32FE 5EE2 56CF 27F9 30A8 CAA2
- List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
-- Mit freundlichen Grüßen Dipl. Inform. (FH) Carsten Czerner Medien- und Informationszentrum (MIZ) Leuphana Universität Lüneburg Scharnhorststraße 1, C7.217 21335 Lüneburg Fon 04131.677-1241 Fax 04131.677-1246