I want to set up a freeRADIUS server to work together with an active
directory.
The best tutorial I've found is
http://wiki.freeradius.org/FreeRADIUS_Active_Directory_Integration_HOWTO
but it seems to be outdated
because the part with the Configuration of radius.conf is based on an
older version
I know but how can I use/activate it?
And must I do more than a aptitude install samba for ntlm_auth on Debian Etch?
Where should I add ntlm_auth in the authenticate { section of the default
sites-enabled?
Under Auth-Type MS-CHAP { chap?
-Ursprüngliche Nachricht-
Von: [EMAIL PROTECTED]
OK.
I cannot find password server = or realm = entries in the smb.conf .
Should I add them by myself?
Start the Samba and Kerberos servers,... you mean on the freeRADIUS system?
I have only installed Samba and its running. Should I restart it?
Thanks a lot!
F. Niedernolte
-Ursprüngliche
Thanks, now it works :)
Now the last step: How can I test it? What tool/program etc. can/should I use
to test it?
The radclient cannot currently be used to send this request, unfortunately,
which makes testing a little difficult If everything goes well, you should see
the server returning
.
Cleaning up request 0 ID 92 with timestamp +3710
Ready to process requests.
Now what should I do?
Thanks in advance.
Von: [EMAIL PROTECTED] [mailto:freeradius-users-bounces+frederik.niedernolte
mailto:freeradius-users-bounces%2Bfrederik.niedernolte [EMAIL PROTECTED] Im
Auftrag von Syed
Is is possible to use only one freeRADIUS server (the just configured one) for
a bunch of different domains
in my active directory network?
How?
F. Niedernolte
-Ursprüngliche Nachricht-
Von: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Im Auftrag von [EMAIL
PROTECTED]
Gesendet:
OK, thanks.
Now it works.
Is this the way it should look right?
Ready to process requests.
rad_recv: Access-Request packet from host 127.0.0.1 port 32793, id=97, length=59
User-Name = MyUser
User-Password = MyPassword
NAS-IP-Address = IP.ADDRESS.OF.SERVER
NAS-Port
I have finished all steps till user Auth-Type := ntlm_auth from
http://deployingradius.com/documents/configuration/active_directory.html
.
With this command I get this error message at the end of
/usr/sbin/freeradius -X:
/etc/freeradius/users[1]: Parse error (check) for entry MyUser:
And how can I do that?
I cannot find something like that via Google :(
-Ursprüngliche Nachricht-
Von: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Im Auftrag von Alan DeKok
Gesendet: Donnerstag, 9. Oktober 2008 14:59
An: FreeRadius users mailing list
Betreff: Re: AW: AW: AW: Problem with
There are too many pages to check.
Perhaps you can give me a specific link?
I want to do it on my own but with no information it is impossible.
F. Niedernolte
-Ursprüngliche Nachricht-
Von: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Im Auftrag von Alan DeKok
Gesendet: Donnerstag, 9.
Südmersen
Von: [EMAIL PROTECTED] [mailto:freeradius-users-bounces+frederik.niedernolte
mailto:freeradius-users-bounces%2Bfrederik.niedernolte [EMAIL PROTECTED] Im
Auftrag von Syed Anwarul Hasan
Gesendet: Donnerstag, 9. Oktober 2008 11:44
An: FreeRadius users mailing list
Betreff: Re: Problem
I didn't mean that.
I thought you would know a link or site for this but if noone knows I will ask
the samba people.
Thanks.
Frederik Niedernolte
-Ursprüngliche Nachricht-
Von: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Im Auftrag von [EMAIL
PROTECTED]
Gesendet: Donnerstag, 9. Oktober
I want to use freeRADIUS for a global MAC authentification but I cannot
find any tutorials for that.
What must I do realize it?
Thanks in advance.
Best regards,
F. Niedernolte
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
So a simple entry like
User42 MAC := 02:01:02:03:04:05
in the users file would be enough!?
-Ursprüngliche Nachricht-
Von: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Im Auftrag von Alan DeKok
Gesendet: Mittwoch, 22. Oktober 2008 10:22
An: FreeRadius users mailing list
Betreff: Re: MAC
OK, but the initial idea behind this is correct (without the MAC address
syntax), isn't it?
F. Niedernolte
-Ursprüngliche Nachricht-
Von: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Im Auftrag von Michael
Schwartzkopff
Gesendet: Mittwoch, 22. Oktober 2008 10:54
An: FreeRadius users
Isn't it possible without a password?
In the current situation I only add a MAC address to an access point and the
client can connect to it.
Because of many access points this task should be done by the RADIUS-server for
all access points.
So every access point should forward the
16 matches
Mail list logo