FreeRADIUS Authentication with AD Without Joining AD
Alan DeKok
aland at deployingradius.com
Mon May 24 14:03:41 CEST 2021
On May 24, 2021, at 7:58 AM, Vertigo Altair <vertigo.altair at gmail.com> wrote:
>
> I'm trying to use FreeRADIUS with an Active Directory Server. I've read the
> documentations but the server that FreeRADIUS runs has to join the Active
> Directory as a client.
>
> Is there any way to authenticate users with AD without joining the AD
> server?
No.
> P.S.: I'm using MSCHAP protocol.
Doubly no.
If FreeRADIUS gets User-Password, then it can just do an LDAP "bind as user" to Active Directory.
But for MS-CHAP, it is *required* to use Samba.
Alan DeKok.
More information about the Freeradius-Users
mailing list