Try Aalesund\\Test ________________________________
From: [EMAIL PROTECTED] on behalf of Øystein Gåsdal
Sent: Thu 27/01/2005 11:32
To: 'freeradius-users@lists.freeradius.org'
Subject: ntlm_auth and Windows Groups
Hi!
Through this list I have been able to authenticate users against a nt-domain
using ntlm_auth using this line in radiusd.conf:
ntlm_auth = "/usr/bin/ntlm_auth --request-nt-key
--username=%{mschap:User-Name} --domain=%{mschap:NT-Domain}
--challenge=%{mschap:Challenge:-00} --nt-response=%{mschap:NT-Response:-00}"
But now I want to take it a step further, and limit it to certain groups.
Say I want to authenticate only users from the group Test;
If I write a line like this:
ntlm_auth --username=og4 --domain=aalesund
--require-membership-of='Aalesund\Test'
I get this message:
NT_STATUS_OK: Success (0x0)
But when i add the line --require-membership-of='Aalesund\Test' into the
ntml_auth string in radiusd.conf, i get this error:
[2005/01/27 12:28:03, 0] utils/ntlm_auth.c:get_require_membership_sid(230)
Could not parse 'AalesundTest' into seperate domain/name parts!
So it seems to remove the \ for some reason..
Anyone know how to fix this?
Thanks!
Øystein Gåsdal
Norway
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
<<winmail.dat>>
