Yes. I did not supply the domain into in the usename.
But "xjtu" is our default domain, I set it in mschap ntlm_auth parameters. If
I use old freeRADIUS-1.1.6, mschap module will supply "xjtu" as domain if no
domain info in username.
--domain=%{mschap:NT-Domain:-xjtu}
--- 10年7月2日,周五, Alan Buxey <[email protected]> 写道:
发件人: Alan Buxey <[email protected]>
主题: Re: ntlm_auth fails for none domain
收件人: "FreeRadius users mailing list" <[email protected]>
日期: 2010年7月2日,周五,下午4:17
Hi,
> Hi,
> It is the whole debug info. I think the problem is we could not get the
> default domain name "xjtu".
thats not the whole debug either...never mind.
[John] Sorry. I did not attach the debug for freeRADIUS init.
from what I can see.....
> Listening on authentication address * port 1812
> Listening on command file /usr/local/var/run/radiusd/radiusd.sock
> Listening on proxy address * port 1814
> Ready to process requests.
> rad_recv: Access-Request packet from host 10.155.20.85 port 32807, id=118,
> length=125
> Service-Type = Authorize-Only
> NAS-Port-Type = Wireless-802.11
> User-Name = "hhe"
^^^^^^^^^^^^^^^^^^^
you are not sending any doamin in the login at all - so how the ***** can FR
know to do things for you?
the domain needs to be sent in the login
> [mschap] expand: --domain=%{mschap:NT-Domain:-xjtu} -> --domain=
see, you say, use the value supplied via mschap, or use xjtu. mschap supplied
a blank, so you
use a blank.
[John] Yes. I did not supply the domain into in the usename.
But "xjtu" is our default domain, I set it in mschap ntlm_auth
parameters.
If I use old freeRADIUS-1.1.6, mschap module will supply "xjtu" as
domain if no domain info in username.
alan
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
