Hi,
rad_recv: Access-Request packet from host 127.0.0.1:32772, id=101, length=61 User-Name = "<removed>" User-Password = "<removed>" NAS-IP-Address = 255.255.255.255 NAS-Port = 0
modcall[authorize]: module "mschap" returns noop for request 0
FreeRADIUS doesn't even try to do AD auth, because the incoming request does not contain a MS-CHAP challenge. If you want to try AD auth, try it with a _real_ client that speaks MS-CHAP. If you send clear-text passwords, as in the packet below, you could simply configure ldap {} to bind to the AD server, and then ntlm_auth would be obsolete. Stefan -- This mail is guaranteed to be virus free because it was sent from a computer running Linux. -- Stefan WINTER Fondation RESTENA - Réseau Téléinformatique de l'Education Nationale et de la Recherche - Ingénieur de recherche 6, rue Richard Coudenhove-Kalergi L-1359 Luxembourg