MikroTik VPN + HotSpot
Alan DeKok
aland at deployingradius.com
Wed Feb 12 12:08:30 UTC 2025
On Feb 12, 2025, at 4:52 AM, Adnan RIHAN <axel50397 at gmail.com> wrote:
> For my information, why skip ntlm_auth in the case I'm receiving PAP, as I'm already using ntlm_auth for mschap?
Using LDAP is simpler, faster, and has fewer intermediate pieces. You can:
a) use an existing LDAP connection to check PAP passwords
b) fork ntlm_auth which connects over a socket to winbind which connects to Samba which uses 1990s NT protocols to talk to Active Directory.
Which one is faster and is less likely to fail?
Alan DeKok.
More information about the Freeradius-Users
mailing list