On 2011/07/13 06:51 PM, Phil Mayers wrote:
If you are using Samba as your domain controllers, then you have access to
the SAM and can extract the LM/NT hash from whatever backend you use.
So you can just feed that info straight to FreeRADIUS. No need to use
ntlm_auth / samba membership - just
On 14/07/11 08:45, Johan Meiring wrote:
On 2011/07/13 06:51 PM, Phil Mayers wrote:
If you are using Samba as your domain controllers, then you have
access to
the SAM and can extract the LM/NT hash from whatever backend you use.
So you can just feed that info straight to FreeRADIUS. No need to
sgilmour wrote:
My Question is on my PC's Winows 7 and Windows XP clients. How do I get my
user to work in a domain environment with PEAP and EAP-TLS so that I don't
need to manually login with my client. This would be the preferred way for
us to authenticate to the network. This is how we
Hi,
I had to uncheck validate certificates on the client. I also had to uncheck
use logon on username and password so it would ask me for the credentials.
The server does not like when the client sends domain info. On the server
side I had to change the users file so it doesn't include the
I just want to make sure I understand this. The only way is to be able to
login to my PC with a Domain is to incorporate freeradius with an Active
Directory server. There isn't a way to do this without using Active
Directory and to have freeradius do this independantly?
--
View this message in
On 07/13/2011 04:20 PM, sgilmour wrote:
I just want to make sure I understand this. The only way is to be able to
login to my PC with a Domain is to incorporate freeradius with an Active
Directory server. There isn't a way to do this without using Active
Directory and to have freeradius do
sgilmour wrote:
I just want to make sure I understand this. The only way is to be able to
login to my PC with a Domain is to incorporate freeradius with an Active
Directory server. There isn't a way to do this without using Active
Directory and to have freeradius do this independantly?
If
On Wed, 13 Jul 2011 08:20 -0700, sgilmour sgilm...@enterasys.com
wrote:
I just want to make sure I understand this. The only way is to be able to
login to my PC with a Domain is to incorporate freeradius with an Active
Directory server. There isn't a way to do this without using Active
On 2011/07/13 05:49 PM, Phil Mayers wrote:
To login with domain credentials, FreeRADIUS must be able to check domain
credentials.
To check domain credentials, FreeRADIUS must be able to talk to Samba as a
domain member.
-
Just for interest sake...
We use a lot of Samba Domain Controllers
Nick,
I will take a look.
Thanks
Scott
From: Nick Kartsioukas [via FreeRadius]
[mailto:ml-node+4583281-225081943-107...@n5.nabble.com]
Sent: Wednesday, July 13, 2011 12:31 PM
To: Gilmour, Scott
Subject: Re: How to setup Freeradius in a Domain
On Wed, 13 Jul 2011 08:20 -0700, sgilmour [hidden
On 07/13/2011 05:40 PM, Johan Meiring wrote:
Just for interest sake...
We use a lot of Samba Domain Controllers (samba3, NT4 style domain)
I should have been more precise: my comments apply to Microsoft domain
controllers.
If you are using Samba as your domain controllers, then you have
On Jul 13, 2011, at 5:20 PM, sgilmour wrote:
I just want to make sure I understand this. The only way is to be able to
login to my PC with a Domain is to incorporate freeradius with an Active
Directory server.
No as the others have said, unless you're looking to qualify a username using
Thanks for everyones help. I will follow the
http://deployingradius.com/documents/configuration/active_directory.html
Looks like all I need to do is setup the samba, and the ntml_auth file and I
should be all set.
I should be able to setup the smb.conf file so it will work with both my
2003 and
I had to uncheck validate certificates on the client. I also had to uncheck
use logon on username and password so it would ask me for the credentials.
The server does not like when the client sends domain info. On the server
side I had to change the users file so it doesn't include the Auth-Type
14 matches
Mail list logo