EAP-TTLS (PAP) not working with NT domain - debian freeradius 1.1.7
James McOrmond
jamesm at xandros.com
Tue Mar 25 21:14:28 CET 2008
Alan DeKok wrote:
> James McOrmond wrote:
>
>> As per previous emails, since i'm using samba/ldap i'm able to pull the
>> nt/lmpassword fields directly out of the ldap. Should this method
>> negate the use of the ntlm_auth method?
>>
>
> Yes.
>
> See ldap.attrmap. The LDAP module uses this to map LDAP attributes to
> RADIUS attributes. Once FreeRADIUS has an NT hash, it can authenticate
> users.
>
Ok, so should I comment out the mschap section where the ntlm_auth
command/method is defined?
What about the other auth types? ms-chap/peap/eap-mschapv2,eap-gtc,
will they work with the ntpassword pulled from ldap?
--
James A. McOrmond (jamesm at xandros.com)
Network Administrator
Xandros Corporation, Ottawa, Canada.
Morpheus: ...after a century of war I remember that which matters most:
*We are still HERE!*
More information about the Freeradius-Users
mailing list