: Re: Returning attributes based on group membership using
NTLM_AUTH
Moe, John j...@hatch.com.au wrote:
Oh goodie, I'm getting somewhere. :-)
...except on the top posting front email-nazi/. ;P
You know, I even thought of that before I sent it, but noticed that the
reply to which I
-Original Message-
[ snip ]
# search reference
ref:
ldap://DomainDnsZones.my.domain.name/DC=DomainDnsZones,DC=my,DC=domain,
DC
=name
# search result
search: 5
result: 0 Success
# numResponses: 3
# numEntries: 1
# numReferences: 1
So something still isn't right.
Damn,
-Bell
Sent: Wednesday, 3 August 2011 4:15 PM
To: FreeRadius users mailing list
Subject: Re: Returning attributes based on group membership using
NTLM_AUTH
Cect ! :)
-Arran
On 3 Aug 2011, at 06:19, Moe, John wrote:
Sorry to reply to my own post, but I think I've found the answer
I'm trying to set up switch logons for IT staff. Some will get operator
(limited, read-only) access, some get manager (full) access. I've got two
Active Directory groups that control which access they get.
I've got the ntlm_auth section working with two different instances, one for
each, using
-Original Message-
From: freeradius-users-bounces+jmoe=hatch.com...@lists.freeradius.org
[mailto:freeradius-users-
bounces+jmoe=hatch.com...@lists.freeradius.org] On Behalf Of Moe, John
Sent: Wednesday, 3 August 2011 9:33 AM
To: freeradius-users@lists.freeradius.org
Subject: Returning
-Original Message-
So ask *specific* questions about what you expect, what's happening,
and what you think is going wrong.
Ask small questions, instead of long ones. It really makes a
difference.
Well, ok, I'll start again, go as far as I can, and then ask questions about
-Original Message-
From: freeradius-users-bounces+jmoe=hatch.com...@lists.freeradius.org
[mailto:freeradius-users-
bounces+jmoe=hatch.com...@lists.freeradius.org] On Behalf Of Gary
Gatten
Sent: Thursday, 21 July 2011 9:29 AM
To: 'FreeRadius users mailing list'
Subject: RE: Trying
-Original Message-
1.) Use only ntlm_auth. If necessary you can use require-membership-
of (I forget exact syntax) to ensure only members of Network Admins
can get a cli on your network gear. It will also work for 802.1x
From what I've read, require-membership-of is a switch to
: Trying to wrap my head around FreeRadius config
On 07/19/2011 05:20 AM, Moe, John wrote:
1) When a RADIUS request gets received by the server, it first looks
up
the device in the clients.conf file. If it doesn't exist there, it
ignores the request (with a message being logged saying
to wrap my head around FreeRadius config
Moe, John wrote:
Moe, John wrote:
Apologies in advance if this isn't the right forum for this, or if
it's
already been answered somewhere, and my Google-fu just isn't up to
the
task. Please point me in the right direction if either is the case
Hello, all
Apologies in advance if this isn't the right forum for this, or if it's
already been answered somewhere, and my Google-fu just isn't up to the
task. Please point me in the right direction if either is the case.
I've managed to get a FreeRadius instance up that will authenticate a
/ Confirmation needed re: FreeRadius against
ActiveDirectory
Moe, John wrote:
Now, I've read a lot of configuration pages (for Ubuntu, Samba,
Winbind,
and FreeRadius, to name a few) in the last few days, and my head's
spinning a bit, and I'd like to make sure I'm doing this right
] On Behalf Of Moe,
John
Sent: Tuesday, March 01, 2011 3:26 PM
To: FreeRadius users mailing list
Subject: RE: Clarification / Confirmation needed re: FreeRadius
against
ActiveDirectory
-Original Message-
From: freeradius-users-
bounces+jmoe=hatch.com
I'm setting up an Ubuntu server (10.04LTS amd64) with FreeRadius (v2.1.8
from apt-get) to use as an authenticator against Active Directory for
our HP ProCurve switches. I've gotten the server on to our Active
Directory domain, and have begun the setup of the FreeRadius server.
I've even managed
I'm trying to set up a FreeRADIUS server in our organization, and the
corporate preference is to run on Windows. I've got FreeRADIUS to compile
and have successfully completed the PAP test (from
http://deployingradius.com/documents/configuration/pap.html) to make sure it
works. Now I'm looking
15 matches
Mail list logo
