Chris Liles wrote:
I hacked up the line to just say %{Stripped-User-Name} but that value
must be null or something, because then ntlm_auth gets called with
"--username="
Any thoughts as to why I can't get the DOMAIN\ stripped when calling
ntlm_auth
Although you've already solved it, FYI the r
, May 10, 2006 4:12 PM
To: FreeRadius users mailing list
Subject: RE: with_ntdomain_hack
Try this ntlm_auth string (Watch for page breaks in email)
ntlm_auth = "/usr/bin/ntlm_auth --request-nt-key
--username=%{mschap:User-Name} --challenge=%{mschap:Challeng
e} --nt-res
PROTECTED]
> g
> [mailto:[EMAIL PROTECTED]
> adius.org] On Behalf Of Chris Liles
> Sent: Wednesday, May 10, 2006 3:51 PM
> To: FreeRadius users mailing list
> Subject: RE: with_ntdomain_hack
>
> You are right, it was that I was lowercasing the username
> before authentication..
et the DOMAIN\ stripped when calling ntlm_auth
Thanks!
--
Chris Liles
System Analyst
Air2Web, Inc.
1230 Peachtree St. N.E.
12th Floor
Atlanta, GA 30309
-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of King, Michael
Sent: Wednesday, May 10, 2006 3:39 PM
> -Original Message-
> I can't seem to figure out how to get with_ntdomain_hack set
> correctly.
>
> I am trying to get peap going against active directory with winbind.
>
> It works if I enter in the username and password from the
> windows supplica
I can’t seem to figure out how to get with_ntdomain_hack set correctly.
I am trying to get peap going
against active directory with winbind.
It works if I enter in the username and password from the
windows supplicant prompt, but when I set the supplicant to send the
information
Michael,
Unforunately, the "with_ntdomain_hack" will indeed break proper eap
checking. There is another way to accomplish what you're wanting though
while keeping the security that patch provides. Instead of using
with_ntdomain_hack, try this. If you're just wanting to co
On Fri, Jan 16, 2004 at 03:08:26PM -0600, Michael Griego wrote:
> Have you tried the latest CVS snapshot? Alan recently added an updated
> version of that check that should work around the problem you're
> experiencing. Please let us know if that works.
The report was from a CVS checkout this mo
icate an XP-Supplicant with PEAP and
> with_ntdomain_hack set to yes I get the following in my log:
>
> rlm_eap: Identity does not match User-Name, setting from EAP Identity.
>
> In this case, the EAP Identitiy is 'MARVIN\\michael' and the User-Name
> is 'michael
Hello,
While trying to authenticate an XP-Supplicant with PEAP and
with_ntdomain_hack set to yes I get the following in my log:
rlm_eap: Identity does not match User-Name, setting from EAP Identity.
In this case, the EAP Identitiy is 'MARVIN\\michael' and the User-Name
is 'micha
10 matches
Mail list logo