Freeradius 3 and empty password from authorization

chose chose at
Mon Apr 23 10:22:28 CEST 2018

   Good morning,
   I couldn't authorize over my radius, when I run it with debug, I see 
that user password is empty:

(23) ntlm_auth: Executing: /usr/bin/ntlm_auth --request-nt-key 
--domain=domain.tld --username=%{Stripped-User-Name} 
(23) ntlm_auth: EXPAND --username=%{Stripped-User-Name}
(23) ntlm_auth:    --> --username=user
(23) ntlm_auth: EXPAND --password=%{User-Password}
(23) ntlm_auth:    --> --password=
(23) ntlm_auth: ERROR: Program returned code (1) and output 
'NT_STATUS_WRONG_PASSWORD: Wrong Password (0xc000006a)'
(23)       [ntlm_auth] = reject
(23)     } # if (&User-Name =~ /@domain.tld/ || &User-Name =~ 
/@domain.tld/)  = reject
(23)   } # authorize = reject
(23) Invalid user (ntlm_auth: Program returned code (1) and output 
'NT_STATUS_WRONG_PASSWORD: Wrong Password (0xc000006a)'): [user] (from 
client controler2 port 13 cli 86-e8-4f-43-5c-9b)
(23) Using Post-Auth-Type Reject

   User is not empty.
   When I try to authorize ntlm_auth from bash, all is OK (NT_STATUS_OK: 
Success (0x0))

   What did I missed ?
   Thanks and best regards

Ma domena pouziva zabezpeceni a kontrolu SPF ( a
DomainKeys/DKIM (s ADSP) a implementaci DMARC. Pokud mate problemy s
dorucenim emailu, zacnete pouzivat metody overeni puvody emailu
zminene vyse. Dekuji.
My domain use SPF ( and DomainKeys/DKIM (with ADSP)
policy and implementation of the DMARC. If you've problem with sending
emails to me, start using email origin methods mentioned above. Thank

More information about the Freeradius-Users mailing list