Yohoo!
This is done via simple LDAP bind, which AD supports.
Yes, thought so.
It works for PAP authentication. It doesn't work for CHAP, MSCHAP,
or PEAP.
THX for the information. I'm just writing a little howto. For completeness
could you explain in short words the disadvantage when using
Am Montag, 14. November 2005 13:07 schrieb Christian:
Yohoo!
(...)
Works fine here. Is there the need of a short howto for the doc/ ?
Definitely yes !
--
Dr. Michael Schwartzkopff
MultiNET Services GmbH
Bretonischer Ring 7
85630 Grasbrunn
Tel: (+49 89) 456 911 - 0
Fax: (+49 89) 456 911 - 21
Yohoo!
LDAP advantage is that you can get more information out of
the AD...which is what io believe is the desire in this case
Gotcha! :)
My google-searches hat driven me into the direction to use _only_ ntlm_auth for
authentication vs. AD.
Meanwhile I had also triggered out the needed
Yohoo!
What about the password?
Which password? The User-Password? Or the shared secret?
The Password for the Proxy-User is written down in the radiusd.conf.
I thought this was a kerberos one and didn't reside into the ldap itself?
Kerberos ist installed, but I don't use it (I think so! ;-))
Yohoo!
I hope, I could help some people trying to use AD for radius.
there is another way - use the krb module to authenticate against AD
Are there any advantages/ disadvantages ldap - krb5?
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
5 matches
Mail list logo
