On Fri, Oct 29, 2010 at 6:37 PM, Alan Buxey a.l.m.bu...@lboro.ac.uk wrote:
Hi,
This may be 100% off the mark, but have tried using the AD radius
plugin IAS? I have tested its support for proxying for a
proof-of-concept and it was quite simple to setup. I have no
production experience.
On Thu, Oct 28, 2010 at 6:15 PM, Alan Buxey a.l.m.bu...@lboro.ac.uk wrote:
Hi,
I ran across a post on the redhat forums that stated that you must
start smbd before winbindd, otherwise even though running ntlm_auth
seems to work from the command line. It doesn't work when running
Hi,
This may be 100% off the mark, but have tried using the AD radius
plugin IAS? I have tested its support for proxying for a
proof-of-concept and it was quite simple to setup. I have no
production experience.
cough splutter. why use IAS? this is a FreeRADIUS mailing list.
FR is superior
I've been following the reciepe on the Deploying RADIUS web site,
but I have been unable to get an iPhone or Laptop to authenticate to
wireless.
It appears from the log that ntlm_auth is behaving correctly but the
the challenge continues.
I'm running 2.1.9 on Fedora 12 using the
@lists.freeradius.o
rg] On Behalf Of Johnson, Neil M
Sent: Thursday, October 28, 2010 9:48 AM
To: freeradius-users@lists.freeradius.org
Subject: Authenticating agains AD issues
I've been following the reciepe on the Deploying RADIUS web site, but
I have been unable to get an iPhone or Laptop
On 28/10/10 15:48, Johnson, Neil M wrote:
I've been following the reciepe on the Deploying RADIUS web site, but
I have been unable to get an iPhone or Laptop to authenticate to wireless.
It appears from the log that ntlm_auth is behaving correctly but the the
challenge continues.
I'm running
On 28/10/10 16:14, Sallee, Stephen (Jake) wrote:
Did you enable the “WITH NT DOMAIN HACK” in your MSCHAP module?
Oops, well spotted - disregard my email. Jake is right - you have
DOMAIN\user going into ntlm_auth, which may be messing up the
challenge/response calculation.
-
List
@lists.freeradius.org]
On Behalf Of Sallee, Stephen (Jake)
Sent: Thursday, October 28, 2010 10:15 AM
To: FreeRadius users mailing list
Subject: RE: Authenticating agains AD issues
Did you enable the WITH NT DOMAIN HACK in your MSCHAP module?
Jake Sallee
Godfather Of Bandwidth
Network Engineer
Fone: 254-295
On 28/10/10 16:22, Johnson, Neil M wrote:
Yes, I did.
Ah. However, the debug output says:
[mschap] expand: %{Stripped-User-Name} -
[mschap] ... expanding second conditional
[mschap] WARNING: Deprecated conditional expansion :-. See man
unlang for details
[mschap] expand: %{User-Name:-None}
[mailto:freeradius-users-
bounces+neil-johnson=uiowa@lists.freeradius.org] On Behalf Of Phil
Mayers
Sent: Thursday, October 28, 2010 10:44 AM
To: freeradius-users@lists.freeradius.org
Subject: Re: Authenticating agains AD issues
On 28/10/10 16:22, Johnson, Neil M wrote:
Yes, I did.
Ah
+neil-
johnson=uiowa@lists.freeradius.org [mailto:freeradius-users-
bounces+neil-johnson=uiowa@lists.freeradius.org] On Behalf Of
Johnson, Neil M
Sent: Thursday, October 28, 2010 10:58 AM
To: FreeRadius users mailing list
Subject: RE: Authenticating agains AD issues
Okay, I made those
, Neil M
Sent: Thursday, October 28, 2010 11:27 AM
To: FreeRadius users mailing list
Subject: RE: Authenticating agains AD issues
Could this be the samba bug ? I'm running 3.4.9 of samba. I thought it
was fixed in that release.
-Neil
--
Neil Johnson
Network Engineer
Information
On 10/28/2010 09:02 PM, Johnson, Neil M wrote:
I ran across a post on the redhat forums that stated that you must
start smbd before winbindd, otherwise even though running ntlm_auth
seems to work from the command line. It doesn't work when running
FreeRadius.
interesting; do you have a link?
Hi,
I ran across a post on the redhat forums that stated that you must
start smbd before winbindd, otherwise even though running ntlm_auth
seems to work from the command line. It doesn't work when running
FreeRadius.
interesting; do you have a link?
I cant pull out a direct link but
14 matches
Mail list logo