FreeRADIUS using Active Directory integration broken without any traces

Arran Cudbard-Bell a.cudbardb at
Fri Sep 26 22:05:36 CEST 2014

On 26 Sep 2014, at 15:54, Vinícius Ferrão <ferrao at> wrote:

> Hello guys,
> I've a FreeBSD 10.0 server running FreeRADIUS 3 and things got broken without any apparent reason.
> I'm using Winbind from Samba4 to authenticate with ntlm_auth. I've done some debug to solve the problem, but I was unable to find where is the problem.
> ntlm_auth is working:
> # ntlm_auth --username=ferrao --request-nt-key
> # Password: 
> # NT_STATUS_OK: Success (0x0)
> But RADIUS fails when doing EAP-PEAP authentication, and running FreeRADIUS in debug mode this is the error message:
> # (9) mschap : Executing: /usr/local/bin/ntlm_auth --request-nt-key --username=%{%{Stripped-User-Name}:-%{%{User-Name}:-None}} --challenge=%{%{mschap:Challenge}:-00} --nt-response=%{%#{mschap:NT-Response}:-00}

   ^ What's this? 

Arran Cudbard-Bell <a.cudbardb at>
FreeRADIUS development team

FD31 3077 42EC 7FCD 32FE 5EE2 56CF 27F9 30A8 CAA2

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 881 bytes
Desc: Message signed with OpenPGP using GPGMail
URL: <>

More information about the Freeradius-Users mailing list