When trying to test this with PEAP I occasionally get the ntlm_auth attempting to use winbindd but mostly I just see the EAP conversation(which is known good). Is there additional configuration that I am missing? I added the --domain=test because the few times it did attempt to use ntlm_auth it complained about not having a domain set for winbindd (even though my smb.conf has the domain set)
radiusd.conf:
ntlm_auth = "/usr/local/samba/bin/ntlm_auth --domain=test --request-nt-key --username=%{Stripped-User-Name:-%{User-Name:-None}} --challenge=%{ms
chap:Challenge:-00} --nt-response=%{mschap:NT-Response:-00}"
users:
DEFAULT Auth-Type := mschap
Fall-Through = 1
TIA,
Steve
- Re: mschap ntlm_auth Steve OBrien
- Re: mschap ntlm_auth Alan DeKok
