FR with AD authentication not working

Stefan Winter stefan.winter at
Sat Oct 28 11:27:58 CEST 2006


> rad_recv: Access-Request packet from host, id=101,
> length=61 User-Name = "<removed>"
>         User-Password = "<removed>"
>         NAS-IP-Address =
>         NAS-Port = 0

>   modcall[authorize]: module "mschap" returns noop for request 0

FreeRADIUS doesn't even try to do AD auth, because the incoming request does 
not contain a MS-CHAP challenge. If you want to try AD auth, try it with a 
_real_ client that speaks MS-CHAP.
If you send clear-text passwords, as in the packet below, you could simply 
configure ldap {} to bind to the AD server, and then ntlm_auth would be 


This mail is guaranteed to be virus free because it was sent from a computer 
running Linux.


Fondation RESTENA - Réseau Téléinformatique de l'Education Nationale et de 
la Recherche - Ingénieur de recherche

6, rue Richard Coudenhove-Kalergi
L-1359 Luxembourg

More information about the Freeradius-Users mailing list