Checking Active Directory group membership with winbind
Matthew Newton
mcn4 at leicester.ac.uk
Mon Jun 20 12:24:55 CEST 2016
On Sat, Jun 18, 2016 at 01:27:59PM -0400, Arran Cudbard-Bell wrote:
> > On 17 Jun 2016, at 18:38, Matthew Newton <mcn4 at leicester.ac.uk> wrote:
> >
> > There is now code in the rlm_winbind module in v3.1.x that permits
> > checking AD group membership in a similar way that you can
> > currently do with LDAP. So if you don't want to configure LDAP,
> > but do have a need to check AD groups, this might be useful.
>
> Looks good! IIRC this allows checks against nested groups too, right?
I just checked - yes it does.
Matthew
--
Matthew Newton, Ph.D. <mcn4 at leicester.ac.uk>
Systems Specialist, Infrastructure Services,
I.T. Services, University of Leicester, Leicester LE1 7RH, United Kingdom
For IT help contact helpdesk extn. 2253, <ithelp at le.ac.uk>
More information about the Freeradius-Users
mailing list