Hello, I'm trying to authenticate my windows boxes with dot1x against freeradius. Everything is working fine if I'm using a normal user.
But I want to use the samba workstation accounts from ldap. The problem: mschap blocks accounts which have only the W-sambaAcctFlag set: > info: [mschap] SMB-Account-Ctrl says that the account is disabled, or > is not a normal account. Shouldn't it be possible to use workstation accounts? My temporary solution is to exclude querying sambaAcctFlag. No real solution if you want to lock out really expired or disabled accounts :( -- Jens Weibler
smime.p7s
Description: S/MIME Cryptographic Signature
- List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
