Freeradius, Active Directory and User's Group

2010-03-29 Thread Lincoln Zuljewic Silva
Good afternoon. I have a freeradius server to authenticate a Alcatel device (Alcatel 5620 SAM). The freeradius server is passing requests for an AD that returns OK / NOK for authentication. This part is working. However, I need the freeradius check if the users are part of some groups. Is this

Re: Freeradius, Active Directory and User's Group

2010-03-29 Thread John Dennis
On 03/29/2010 03:13 PM, Lincoln Zuljewic Silva wrote: Good afternoon. I have a freeradius server to authenticate a Alcatel device (Alcatel 5620 SAM). The freeradius server is passing requests for an AD that returns OK / NOK for authentication. This part is working. However, I need the

Re: Freeradius, Active Directory and User's Group

2010-03-29 Thread Lincoln Zuljewic Silva
I'm sorry. I forgot to mention that I'm not using LDAP, but Samba to integrate the freeradius with AD. Regards Lincoln On Mon, Mar 29, 2010 at 4:54 PM, John Dennis jden...@redhat.com wrote: On 03/29/2010 03:13 PM, Lincoln Zuljewic Silva wrote: Good afternoon. I have a freeradius server to

Re: Freeradius, Active Directory and User's Group

2010-03-29 Thread John Dennis
On 03/29/2010 04:02 PM, Lincoln Zuljewic Silva wrote: I'm sorry. I forgot to mention that I'm not using LDAP, but Samba to integrate the freeradius with AD. O.K. I presume you're using samba for authentication, but where are you storing the information about which groups a user is in? I

Re: Freeradius, Active Directory and User's Group

2010-03-29 Thread Lincoln Zuljewic Silva
Understood, but the freeradius will be able to return this group information to the Alcatel device? Regards Lincoln On Mon, Mar 29, 2010 at 5:10 PM, John Dennis jden...@redhat.com wrote: On 03/29/2010 04:02 PM, Lincoln Zuljewic Silva wrote: I'm sorry. I forgot to mention that I'm not using

Re: Freeradius, Active Directory and User's Group

2010-03-29 Thread Gary Gatten
, Active Directory and User's Group Understood, but the freeradius will be able to return this group information to the Alcatel device? Regards Lincoln On Mon, Mar 29, 2010 at 5:10 PM, John Dennis jden...@redhat.com wrote: On 03/29/2010 04:02 PM, Lincoln Zuljewic Silva wrote: I'm sorry. I

Re: Freeradius, Active Directory and User's Group

2010-03-29 Thread Lincoln Zuljewic Silva
@lists.freeradius.org freeradius-users-bounces+ggatten=waddell@lists.freeradius.org To: FreeRadius users mailing list freeradius-users@lists.freeradius.org Sent: Mon Mar 29 15:26:57 2010 Subject: Re: Freeradius, Active Directory and User's Group Understood, but the freeradius

RE: Freeradius, Active Directory and User's Group

2010-03-29 Thread Gary Gatten
=waddell@lists.freeradius.org] On Behalf Of Lincoln Zuljewic Silva Sent: Monday, March 29, 2010 4:08 PM To: FreeRadius users mailing list Subject: Re: Freeradius, Active Directory and User's Group Gary Are you talking about the --require-membership-of parameter of ntlm_auth? If yes, I can't use

Re: Freeradius, Active Directory and User's Group

2010-03-29 Thread Peter Lambrechtsen
Silva Sent: Monday, March 29, 2010 4:08 PM To: FreeRadius users mailing list Subject: Re: Freeradius, Active Directory and User's Group Gary Are you talking about the --require-membership-of parameter of ntlm_auth? If yes, I can't use it because is a randon situation. The Alcatel

Re: Freeradius, Active Directory and User's Group

2010-03-29 Thread Lincoln Zuljewic Silva
-users-bounces+ggatten=waddell@lists.freeradius.org [mailto:freeradius-users-bounces+ggatten=waddell@lists.freeradius.org] On Behalf Of Lincoln Zuljewic Silva Sent: Monday, March 29, 2010 4:08 PM To: FreeRadius users mailing list Subject: Re: Freeradius, Active Directory and User's Group