CHAP and any other varian wont work because password does not fly accross
internet, CHAP use a hash to crypt one way password and sends that to server.
Because server have a hash also (no same algorithm) it fails. If you want to
use chap you must use clear text passwords on server (no hashes)
Hello,
I'm trying to authenticate PPP (in fact l2tp...) users with Active
Directory (windows server 2003 DCs, mixed-mode domain) using winbind /
ntlm_auth. I'm using Samba 3.0.22, PPP 2.4.3, Kerberos 1.3.6, with
Trustix 2.2
What works :
- krb5kinit (and krb5klist -e)
- net ads join
- wbinfo
Hello,
I'm trying to authenticate PPP (in fact l2tp...) users with Active
Directory (windows server 2003 DCs, mixed-mode domain) using winbind /
ntlm_auth. I'm using Samba 3.0.22, PPP 2.4.3, Kerberos 1.3.6, with
Trustix 2.2
What works :
- krb5kinit (and krb5klist -e)
- net ads join
- wbinfo