autentication against active directory does not work

tnt at kalik.net tnt at kalik.net
Mon Sep 22 22:54:06 CEST 2008


>radtest luis x 127.0.0.1 0 123

Default shared secret for localhost is testing123, not 123. That will
take care of:

>WARNING: Unprintable characters in the password. ?  Double-check the >shared secret on the server and the NAS!

radtest sends a pap request. You want to test mschap. You can set up a
real NAS or use something like JRadius Simulator.

>or do i need to config one more line in radiusd.conf ?

You can configure ntlm_auth as an authentication script that will run on
pap requests. It will be more than one line. You will need to create
Auth-Type for it and then force it if all else fails. Not
straightforward.

>or means that account does not har ras access ?

You haven't reached AD yet.

Ivan Kalik
Kalik Informatika ISP




More information about the Freeradius-Users mailing list