domain security problem

tnt at kalik.net tnt at kalik.net
Wed Dec 10 11:31:26 CET 2008


>here is the debug: (user-test- who is not in domain

Well, he was found in AD. And in that domain. And with correct password.

>[mschap]     expand: --domain=%{mschap:NT-Domain} -> --domain=TEST
>[mschap]     expand: --username=%{mschap:User-Name} -> --username=test
>[mschap]  mschap2: 10
>
>[mschap] expand: --challenge=%{mschap:Challenge:-00} -> --challenge=ad923676ac4c1b76 [mschap] expand: --nt-response=%{mschap:NT-Response:-00} -> --nt-response=2b4dda1057bbf603f10d79c87e09e6203b600788c29e7ff5 
>Exec-Program output: NT_KEY: 2066656E05C22F3A995AD9ECFED913D6
>Exec-Program-Wait: plaintext: NT_KEY: 2066656E05C22F3A995AD9ECFED913D6
>Exec-Program: returned: 0
>[mschap] adding MS-CHAPv2 MPPE keys
>++[mschap] returns ok
>MSCHAP Success

Ivan Kalik
Kalik Informatika ISP




More information about the Freeradius-Users mailing list