Authenticating against Win2k8r2 without ntlm_auth
Thomas Smith
theitsmith at gmail.com
Sun Apr 24 02:55:10 CEST 2011
On Sat, Apr 23, 2011 at 5:32 PM, Fajar A. Nugraha <list at fajar.net> wrote:
> On Sun, Apr 24, 2011 at 6:48 AM, Thomas Smith <theitsmith at gmail.com> wrote:
>> I use Likewise Enterprise to provide AD integration
>
>> While Samba 3.5 and Likewise 6 fixed the problems authenticating
>> against Win2k8r2, Likewise removed support for Samba/Winbind in their
>> 6.x series product (they included full support for Samba/Winbind in
>> their 5.x series product)--they now use their own libraries to provide
>> "winbind" functionality. The result of this is that the Samba-included
>> ntlm_auth no longer works (and Likewise doesn't provide a comparable
>> replacement)--since my FreeRADIUS install was using ntlm_auth for AD
>> authentication and authorization, it is no longer working.
>>
>> So I'm looking at alternate ways of authenticating against Win2k8r2. I
>> was hoping to get some input from the list regarding this.
>
> Why not bypass Likewise?
>
> If another windows server is able to join the domain directly, then a
> Linux machine with samba can surely join the same domain without
> needing Likewise or some other third-party integration tool.
Yeah, the thought had occurred to me. :-)
This would just mean turning up another server specifically for FR. I
would also loose some of the management capabilities that Likewise
provides. I was hoping to find another way before resorting to that.
More information about the Freeradius-Users
mailing list