[Samba] Re: Authenticating PPTP users against Samba/LDAP - Patch
doesn't seem to be working
beast at beantransactions.com
Mon Jan 3 12:36:04 GMT 2005
Alex Brown wrote:
> Andrew Bartlett wrote:
>> On Wed, 2004-10-20 at 00:44, Mike Brodbelt wrote:
>>> I have a few remote user who use a PPTP based VPN. The server is running
>>> PoPToP (http://www.poptop.org/), and a pppd patched to support MPPE/MPPC
>>> for (some) added security. Currently, users authentication information
>>> is stored in plaintext in /etc/ppp/chap-secrets. I'd like to be able to
>>> put users into LDAP, and have ppp authenticate either directly against
>>> LDAP, or against Samba (with an LDAP backend). Any ideas on how I might
>>> go about this? Most of the docs I've seen suggest that you can't use PAM
>>> for authentication with CHAP, so it seems not to be as simple as I might
>>> have hoped.
Not related to samba, but I'm using freeradius to authenticate vpn users
againts ldap (using sambaNTpassword attribute), works fine for months,
and as a bonus we get a detail report of user activities.
poptop -> freeradius -> ldap.
More information about the samba