MSCHAP / NTLM_AUTH failure on "expired" AD password; out of sync cached creds / AD password.

Gary Gatten Ggatten at waddell.com
Fri May 13 14:58:52 CEST 2011


Is 3.0 avail now to test, or should I find that string and implement said patch on 2.1.10?

----- Original Message -----
From: Alan DeKok [mailto:aland at deployingradius.com]
Sent: Friday, May 13, 2011 12:09 AM
To: FreeRadius users mailing list <freeradius-users at lists.freeradius.org>
Subject: Re: MSCHAP / NTLM_AUTH failure on "expired" AD password; out of	sync	cached creds / AD password.

Garber, Neal wrote:
> For now, this is working as designed because FR doesn't support password change via MSCHAP.  Recently, there was a thread talking about
> supporting retry and Phil Mayers wrote and submitted a patch to
> provide retry & password change for MSCHAP (thank you Phil:) ).  But, 
> I'm not sure that code will make it into 2.1.11 because I haven't seen 
> a lot of people posting "I tested it and it works fine" messages.  Of course, Alan would know for sure...

  I think I'll put it into 3.0.  That gives people one more reason to
upgrade. :)

  Alan DeKok.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html





<font size="1">
<div style='border:none;border-bottom:double windowtext 2.25pt;padding:0in 0in 1.0pt 0in'>
</div>
"This email is intended to be reviewed by only the intended recipient
 and may contain information that is privileged and/or confidential.
 If you are not the intended recipient, you are hereby notified that
 any review, use, dissemination, disclosure or copying of this email
 and its attachments, if any, is strictly prohibited.  If you have
 received this email in error, please immediately notify the sender by
 return email and delete this email from your system."
</font>





More information about the Freeradius-Users mailing list