ntlm_auth works but not radtest
Alan Buxey
A.L.M.Buxey at lboro.ac.uk
Tue Mar 6 00:12:58 CET 2012
Hi,
2 things
> Mon Mar 5 14:45:54 2012 : Info: [mschap] No NT-Domain was found in the
> User-Name.
> Mon Mar 5 14:45:54 2012 : Info: [mschap] expand: %{mschap:NT-DOMAIN} ->
> Mon Mar 5 14:45:54 2012 : Info: [mschap] ... expanding second conditional
> Mon Mar 5 14:45:54 2012 : Info: [mschap] expand:
> --domain=%{%{mschap:NT-DOMAIN}:-MYDOMAIN} -> --domain=MYDOMAIN
1 as the reqest didnt contain an NT-Domain entry, ensure your --domain option is set correct
(I assume you want MYDOMAIN.... but you never know..especially if you are just following
a document from somewhere on the internet)
> Mon Mar 5 14:45:55 2012 : Debug: Exec-Program output: winbind client not
> authorized to use winbindd_pam_auth_crap. Ensure permissions on
> /var/run/samba/winbindd_privileged are set correctly. (0xc0000022)
2 - this. did you not see this erro - the debug does try to tell you everything.
SHORT OF BEING WRITTEN IN SCREEN HIGH CAPITAL LETTERS ;-)
ensure that /var/run/samba/winbindd_privileged is set to same group as the user
that FreeRADIUS runs as. oh..and be aware that any time that you patch/pdate
samba package, that permission will be blatted back to wrong values.
alan
More information about the Freeradius-Users
mailing list