RADIUS Auth-Type

Bohannan, Chad W Chad_Bohannan at reyrey.com
Fri Dec 2 19:51:27 CET 2005


OK, here is the situation. I have successfully configured RADIUS to
authenticate/authorize NAS requests from my Cisco gear so long as the
user "Auth-Type= System". I have also managed to get Samba working and
have joined the radius server to the AD realm in question. This is
confirmed through the following:

 

ntlm_auth --request-nt-key --domain=MYDOMAIN --username=MYUID

password:xxxxx

NT_STATUS_OK: Success (0x0)

 

wbinfo -a MYUID%MYPASSWD

plaintext password authentication failed

error code was NT_STATUS_NO_SUCH_USER (0xc0000064)

error messsage was: No such user

Could not authenticate user MYUID%MTPASSWD with plaintext password

challenge/response password authentication succeeded

 

However, when I edit the /etc/raddb/users file and change the
"Auth-Type= System" to "Auth-Type=MSCAP" all authentication attempts
fail. Am I specifying the correct auth-type? Have I missed a step? Is
there something I can do (debug maybe) that will better assist in
identifying the problem? Any and all suggestions are appreciated. 

 

I am attempting to have RADIUS proxy authentication requests to AD, then
assign attributes if authentication succeeds.

 

 

Chad

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.freeradius.org/pipermail/freeradius-users/attachments/20051202/2eb9ce00/attachment.html>


More information about the Freeradius-Users mailing list