On Fri, Oct 29, 2010 at 6:37 PM, Alan Buxey wrote:
> Hi,
>
>> This may be 100% off the mark, but have tried using the AD radius
>> plugin IAS? I have tested its support for proxying for a
>> proof-of-concept and it was quite simple to setup. I have no
>> production experience.
>
> splutter. why
Hi,
> This may be 100% off the mark, but have tried using the AD radius
> plugin IAS? I have tested its support for proxying for a
> proof-of-concept and it was quite simple to setup. I have no
> production experience.
splutter. why use IAS? this is a FreeRADIUS mailing list.
FR is superior in
On Thu, Oct 28, 2010 at 6:15 PM, Alan Buxey wrote:
> Hi,
>
>> > I ran across a post on the redhat forums that stated that you must
>> > start smbd before winbindd, otherwise even though running ntlm_auth
>> > seems to work from the command line. It doesn't work when running
>> > FreeRadius.
>>
>>
Hi,
> > I ran across a post on the redhat forums that stated that you must
> > start smbd before winbindd, otherwise even though running ntlm_auth
> > seems to work from the command line. It doesn't work when running
> > FreeRadius.
>
> interesting; do you have a link?
I cant pull out a direct l
On 10/28/2010 09:02 PM, Johnson, Neil M wrote:
I ran across a post on the redhat forums that stated that you must
start smbd before winbindd, otherwise even though running ntlm_auth
seems to work from the command line. It doesn't work when running
FreeRadius.
interesting; do you have a link?
-
org] On Behalf Of
> Johnson, Neil M
> Sent: Thursday, October 28, 2010 11:27 AM
> To: FreeRadius users mailing list
> Subject: RE: Authenticating agains AD issues
>
> Could this be the samba bug ? I'm running 3.4.9 of samba. I thought it
> was fixed in that release.
>
> -
ers-bounces+neil-
> johnson=uiowa@lists.freeradius.org [mailto:freeradius-users-
> bounces+neil-johnson=uiowa@lists.freeradius.org] On Behalf Of
> Johnson, Neil M
> Sent: Thursday, October 28, 2010 10:58 AM
> To: FreeRadius users mailing list
> Subject: RE: Authenticating
iowa@lists.freeradius.org [mailto:freeradius-users-
> bounces+neil-johnson=uiowa@lists.freeradius.org] On Behalf Of Phil
> Mayers
> Sent: Thursday, October 28, 2010 10:44 AM
> To: freeradius-users@lists.freeradius.org
> Subject: Re: Authenticating agains AD issues
>
> On
On 28/10/10 16:22, Johnson, Neil M wrote:
Yes, I did.
Ah. However, the debug output says:
[mschap] expand: %{Stripped-User-Name} ->
[mschap] ... expanding second conditional
[mschap] WARNING: Deprecated conditional expansion ":-". See "man
unlang" for details
[mschap] expand: %{User-Name:-No
@lists.freeradius.org]
On Behalf Of Sallee, Stephen (Jake)
Sent: Thursday, October 28, 2010 10:15 AM
To: FreeRadius users mailing list
Subject: RE: Authenticating agains AD issues
Did you enable the "WITH NT DOMAIN HACK" in your MSCHAP module?
Jake Sallee
Godfather Of Bandwidth
Network Engineer
Fon
On 28/10/10 16:14, Sallee, Stephen (Jake) wrote:
Did you enable the “WITH NT DOMAIN HACK” in your MSCHAP module?
Oops, well spotted - disregard my email. Jake is right - you have
"DOMAIN\user" going into ntlm_auth, which may be messing up the
challenge/response calculation.
-
List info/subsc
On 28/10/10 15:48, Johnson, Neil M wrote:
I've been following the reciepe on the "Deploying RADIUS" web site, but
I have been unable to get an iPhone or Laptop to authenticate to wireless.
It appears from the log that ntlm_auth is behaving correctly but the the
challenge continues.
I'm running
Did you enable the "WITH NT DOMAIN HACK" in your MSCHAP module?
Jake Sallee
Godfather Of Bandwidth
Network Engineer
Fone: 254-295-4658
Phax: 254-295-4221
From: freeradius-users-bounces+jake.sallee=umhb@lists.freeradius.org
[mailto:freeradius-users-bounces+jake.sallee=umhb@
13 matches
Mail list logo