Authenticate with machine account and without ntlm_auth
Alexey D. Filimonov
alexey at filimonic.net
Tue Nov 19 13:47:34 UTC 2024
On 2024-11-19 16:17, Alan DeKok wrote:
> IF YOU THINK THE DOCUMENTATION IS NOT GOOD ENOUGH, THEN SUBMIT PATCHES TO ADD MORE DOCUMENTATION.
The problem is people who use FreeRADIUS and who develop FreeRADIUS are
different people. Without deep-diving to code, you can not create
documentation. For example, calling ldap.authorize inside authenticate
section - who knew it is possible this way...
And I totally agree with the rest.
> That's nice. So why are you here? Do you expect that people will be
happy when you dump on FreeRADIUS, without contributing anything?
Because I'm switching to FreeRADUIS and trying to get into it. About
contributing - I'm currently making an article about a way of providing
EAP-TLS Wi-Fi and EAPoL for Puppet\FreeIPA\DogTag\FreeRADIUS\Linux
enterprise environment to make it possible to join together all parts of
this quest. I could not find any guide for that.
Please don't swear on me, I just notified Rodrigo that for existing
windows enterprise environment there is a ready-to-use book and
solution. FreeRADIUS does not have one. If I ever switch my Windows
clients from NPS to FreeRADIUS, I will make an article about it.
BTW, FreeRADIUS should have something like open wiki for that.
More information about the Freeradius-Users
mailing list