Hi! Through this list I have been able to authenticate users against a nt-domain using ntlm_auth using this line in radiusd.conf: ntlm_auth = "/usr/bin/ntlm_auth --request-nt-key --username=%{mschap:User-Name} --domain=%{mschap:NT-Domain} --challenge=%{mschap:Challenge:-00} --nt-response=%{mschap:NT-Response:-00}"
But now I want to take it a step further, and limit it to certain groups. Say I want to authenticate only users from the group Test; If I write a line like this: ntlm_auth --username=og4 --domain=aalesund --require-membership-of='Aalesund\Test' I get this message: NT_STATUS_OK: Success (0x0) But when i add the line --require-membership-of='Aalesund\Test' into the ntml_auth string in radiusd.conf, i get this error: [2005/01/27 12:28:03, 0] utils/ntlm_auth.c:get_require_membership_sid(230) Could not parse 'AalesundTest' into seperate domain/name parts! So it seems to remove the \ for some reason.. Anyone know how to fix this? Thanks! Øystein Gåsdal Norway - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html