freeradius + NTLM + samba AD 4.5.x

Matthew Newton mcn at
Mon Mar 26 19:47:02 CEST 2018

On 26 March 2018 14:35:53 BST, "Dr. Peer-Joachim Koch" <pkoch at> wrote:
>So we had to enable it to get our radius (freeradius) server working 
>(for 802.1x).
>What would be the best way to change the freeradius configuration in 
>such a way, that we can disable NTLMv1 again.

You can't.

>The radius server is used for WLAN (802.1x) and for VPN.

Presuming you're using MSCHAPv2 for auth, you need NTLMv1 enabled. NTLMv2 won't work.


More information about the Freeradius-Users mailing list