t...@kalik.net wrote:
It is bad news, you say check mac address too
no way reject it simple without mac...
How much simpler can you get? You say that it is a problem that a user
with AD account gets access from an unauthorized machine. The only
answer is to check machine credentials. mac
t...@kalik.net wrote:
I just thought there is a setting which is usefull to differentiate the
HOST/username and DOMAIN/username
OK. Lets try. What is SOMETHING in SOMETHING\username - HOST or DOMAIN?
If you can't tell ...
Ivan Kalik
Kalik Informatika ISP
okay I understand, i just
I just thought there is a setting which is usefull to differentiate the
HOST/username and DOMAIN/username
OK. Lets try. What is SOMETHING in SOMETHING\username - HOST or DOMAIN?
If you can't tell ...
Ivan Kalik
Kalik Informatika ISP
-
List info/subscribe/unsubscribe? See
I just thought there is a setting which is usefull to differentiate the
HOST/username and DOMAIN/username
OK. Lets try. What is SOMETHING in SOMETHING\username - HOST or DOMAIN?
If you can't tell ...
Ivan Kalik
Kalik Informatika ISP
okay I understand, i just thought we have other
[EMAIL PROTECTED] wrote:
my configuration:
radius 2.X , win 2003 AD, domain: TEST, 802.1x
I have a problem:
If the pc is in the domain(TEST) it can authenticate good.
If it is not in domain it can't auth, it is good, BUT when i set the
computer name to TEST and it is not in the domain(simple
here is the debug: (user-test- who is not in domain
Well, he was found in AD. And in that domain. And with correct password.
[mschap] expand: --domain=%{mschap:NT-Domain} - --domain=TEST
[mschap] expand: --username=%{mschap:User-Name} - --username=test
[mschap] mschap2: 10
[mschap]
certainly,
hi is in the AD it is correct,
the problem is the domain
win send the
- DOMAIN\username if it is in domain,
- HOSTNAME\username if it is not in domain (only workgroup)
but when i set TEST(my domain) as hostname (it still not in domain), it
will send this and freeradius think it is
[EMAIL PROTECTED] wrote:
here is the debug: (user-test- who is not in domain
Well, he was found in AD. And in that domain. And with correct password.
certainly,
hi is in the AD it is correct,
the problem is the domain
win send the
- DOMAIN\username if it is in domain,
-
[EMAIL PROTECTED] wrote:
certainly,
hi is in the AD it is correct,
the problem is the domain
win send the
- DOMAIN\username if it is in domain,
- HOSTNAME\username if it is not in domain (only workgroup)
but when i set TEST(my domain) as hostname (it still not in domain), it
will send this
It is bad news, you say check mac address too
no way reject it simple without mac...
How much simpler can you get? You say that it is a problem that a user
with AD account gets access from an unauthorized machine. The only
answer is to check machine credentials. mac filtering is the simplest
my configuration:
radius 2.X , win 2003 AD, domain: TEST, 802.1x
I have a problem:
If the pc is in the domain(TEST) it can authenticate good.
If it is not in domain it can't auth, it is good, BUT when i set the
computer name to TEST and it is not in the domain(simple workgroup) it
CAN
hi,
my configuration:
radius 2.X , win 2003 AD, domain: TEST, 802.1x
I have a problem:
If the pc is in the domain(TEST) it can authenticate good.
If it is not in domain it can't auth, it is good, BUT when i set the
computer name to TEST and it is not in the domain(simple workgroup) it
12 matches
Mail list logo
