NTLM_Auth will not work from within FreeRadius

Phil Mayers p.mayers at imperial.ac.uk
Tue Nov 21 11:34:58 CET 2006

Neal Bullins wrote:

> /usr/bin/ntlm_auth --request-nt-key --domain=MyDom --username=radtest 
> And then I enter the correct password and the result is “NT_STATUS_OK: 
> Success (0x0)”.

Well, that's a plaintext auth, so not really relevant to the next bit...

> The debug output from freeradius is:
> Exec-Program: /usr/bin/ntlm_auth --request-nt-key --domain=MyDom 
> --username=radtest --challenge=3bdc9461e268b957 
> --ntresponse=d618ee49ab97f0ea5cc9c491904dbbbea5a56eb5c9cc0608
> Exec-Program output: Logon failure (0xc000006d)

This is a challenge-response auth. The logical conclusion is that the 
response is not correct for that user/password/challenge combination.

> I would assume that there is some sort of problem with the creation of 
> the challenge/response but that is difficult to test. I have tried two 
> different usernames/passwords and both combinations result in the same 
> error. Any suggestions?

What NAS is talking to FreeRadius that you're actually having the 
problem with?

More information about the Freeradius-Users mailing list