Josh Howlett <[EMAIL PROTECTED]> wrote:
> It sounds to me like you're trying to do too much at once, and too many
> things are broken for you to know where to start!
I really can't emphasize that enough. Many problems are caused by
people trying to do everything at once.
Alan DEKok.
-
Lis
Wed Apr 12 13:21:06 2006 : Error: TLS_accept:error in SSLv3 read
client cert
ificate A
Wed Apr 12 13:21:07 2006 : Info: rlm_eap_mschapv2: Issuing Challenge Wed
Apr 12 13:21:07 2006 : Auth: Login OK: [DOMAIN\\USERNAME] (from client
localhost port 0) Wed Apr 12 13:21:07 2006 : Auth: Login OK:
Burton, Steven wrote:
AFAIK there is no certificate A on the client (or supplicant) so the
error message is probably correct but is it a problem in security
terms?
No. It's an OpenSSL-ism. Ignore it.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
-bounces+sburton=shepherd-construction
> >> [EMAIL PROTECTED]
> >> ts.freeradius.org]On Behalf Of Alan DeKok
> >> Sent: 11 April 2006 16:28
> >> To: FreeRadius users mailing list
> >> Subject: Re: How do I set up simple AD integration?
> >>
>
-Original Message-From:
[EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED]On
Behalf Of Stephen WalshSent: 12 April 2006 14:34To:
freeradius-users@lists.freeradius.orgSubject: RE: How do I set up
simple AD integration?
From: "Burton, Steven"
<[EMAIL PROTECT
group definitions in users file (ho)2. Help, Chap problem ([EMAIL PROTECTED])3. Re: group definitions in users file (Alan DeKok)4. Regarding VLAN (radhika putty)5. pam_radius_auth token user (Josh Restivo)6. RE: How do I set up simple AD integration? (Burton, Steven)7. different gateway for different use
do I set up simple AD integration?
"Burton, Steven" <[EMAIL PROTECTED]> wrote:
This stanza is a enclosed with the mschap section, still
nothing ventured
I changed the line and unfolded it and ran radiusd -X. The first
request didn't match anything usefull and was
ing list
> Subject: Re: How do I set up simple AD integration?
>
>
> "Burton, Steven" <[EMAIL PROTECTED]> wrote:
> > This stanza is a enclosed with the mschap section, still
> nothing ventured
> > I changed the line and unfolded it and ran radiusd
> -Original Message-
> From: Stephen Walsh [mailto:[EMAIL PROTECTED]
> Sent: 12 April 2006 00:41
> To: Burton, Steven
> Subject: Re: How do I set up simple AD integration?
>
>
>
>
>
>
> Hi Steve
>
> I've just completed an AD imple
ailing list
> Subject: RE: How do I set up simple AD integration?
>
>
> You would still needwith_ntdomain_hack = yes
>
> But that isn't your actual problem.
>
> It never called ntlm_auth
>
I'd seen that. What I was trying to do (unsu
ers mailing list
> Subject: RE: How do I set up simple AD integration?
>
>
>
>
> > -Original Message-
> > From:
> > [EMAIL PROTECTED]
> > ists.freer
> > adius.org
> > [mailto:freeradius-users-bounces+sburton=shepherd-construction
> >
"Burton, Steven" <[EMAIL PROTECTED]> wrote:
> This stanza is a enclosed with the mschap section, still nothing ventured
> I changed the line and unfolded it and ran radiusd -X. The first
> request didn't match anything usefull and was rejected by System. I
> tried again but ticked the box 'CHAP
y, April 11, 2006 11:15 AM
> To: FreeRadius users mailing list
> Subject: RE: How do I set up simple AD integration?
>
>
>
> > -Original Message-
> > From:
> > [EMAIL PROTECTED]
> > ists.freer
> > adius.org
> > [mailt
Steve,
#ntlm_auth = "/path/to/ntlm_auth --request-nt-key
--username=%{Stripped-User-Name:-%{User-Name:-None}}
--challenge=%{mschap:Challenge:-00}
--nt-response=%{mschap:NT-Response:-00}"
ntlm_auth = "/usr/bin/ntlm_auth --request-nt-key
--username=%{mschap:User-Nam
ailing list
> Subject: RE: How do I set up simple AD integration?
>
>
> >
> > Is there a how-to or tutorial for this simple case? I have
> > searched this list and google generally. I have read the
> > articles referred to on the FreeRadius home page and severa
>
> Is there a how-to or tutorial for this simple case? I have
> searched this list and google generally. I have read the
> articles referred to on the FreeRadius home page and several
> others and I still can't see how the configuration works. Any
> and all help gratefully received.
>
> Stev
Burton, Steven wrote:
> However, although I can see tantalizing references to 'ntlm_auth' and
> 'ntdomain' and the like in various files I cannot see how to trigger an AD
> lookup from a RADIUS request. So far all I have achieved is:
You are doing well. Too many people try to jump directly to t
Hi,
I am trying to set up FreeRadius 1.1.1 on FreeBSD 6.0 REL with user integration
with Active directory for a Windows 2003 domain currently in Win2000 mixed
mode. My final object is to authenticate user-connections through a wireless AP.
I have setup Samba 3 and successfully joined the Window
18 matches
Mail list logo