Dear jonas markstr�m, RADIUS is only used to perform remote access authentication for PPP/PPTP/L2TP connection. After connection is established you can logon to Microsoft network. Neither NAS nor RADIUS is involved in this process, network logon is processes by Domain controller with NTLM or Kerberos protocol.
--Friday, March 7, 2003, 12:57:59 PM, you wrote to [EMAIL PROTECTED]: jm> Hi all! jm> If I tell my NT -or Win2K based RAS/RRAS server to do RADIUS authentication against a RADIUS server, then how are NTFS ACLs evaluated??? If I authenticate User1 as he does PPP into my network, jm> against a RADIUS server, he passes authentication on this system and gets network access either according to this RADIUS server or from my settings in RAS/RRAS but say he now goes looking for jm> some resource on my file servers where NTFS is implemented; what now? If this username (User1) in RADIUS configs is also a valid domain account, will it be transparent? What of SIDs? Will he get jm> 'access denied' on file access? or a windows authentication screen? jm> Please explain! jm> Thank you jm> "I have noticed that sometimes I frighten people; what they really fear is themselves. They think it is I who scare them, but its the dwarf within them, the ape-faced manlike being who sticks up jm> his head from the depths of their souls" P�r Lagerkvist, The Dwarf jm> G� f�re i k�n och f� din sajt v�rderad p� nolltid med Yahoo! Express -- ~/ZARAZA You know my name - look up my number (Beatles) - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
