[Samba] Winbind problem when exec freeradius

Javier Jimenez javier.jimenezdiaz at gmail.com
Mon May 16 18:03:01 GMT 2005


Now, I'found another problem, if I put a group with spaceblanks on my
ntlm_auth script on freeradius, cannot authenticate. It recognise just
the first word of the name.
Any idea about what´s happening?
Thanks!

---------- Forwarded message ----------
From: Javier Jimenez <javier.jimenezdiaz at gmail.com>
Date: 16-may-2005 12:42
Subject: Re: [Samba] Winbind problem when exec freeradius
To: Andrew Bartlett <abartlet at samba.org>


It works!! Thank you very much!
Javi.

2005/5/16, Andrew Bartlett <abartlet at samba.org>:
> On Mon, 2005-05-16 at 09:28 +0200, Javier Jimenez wrote:
> > Hil list!
> >   I'm trying to authenticate Active Directory Users via freeradius. I
> > can do it in a general case (user and domain) without
> > problem. Now I have to do it restricting the authentication to the
> > members of a group.
>
> > Exec-Program: /usr/bin/ntlm_auth --request-nt-key --username=javi2
> > --require-membership-of='AAMM\MyGroup'  --domain=AAMM
> > --challenge=6b480cf181ded625
> > --nt-response=bce392db1fcd91380690317e7cd1228e78940576d78fde21
> > [2005/05/16 09:05:57, 0] utils/ntlm_auth.c:get_require_membership_sid
> > (237)
> >  Winbindd lookupname failed to resolve 'AAMM\MyGroup' into a SID!
>
> Looking at the source, the issue appears to be the quotes.  FreeRadius
> does not go via a shell, which means that the ' characters are not
> stripped off.  (The ntlm_auth source shows that this debug message is
> printed without any quotes, which means you supplied them)
>
> > Does anybody know why could it be happening? Thanks in advance for any help!!
> --
> Andrew Bartlett                                http://samba.org/~abartlet/
> Authentication Developer, Samba Team           http://samba.org
> Student Network Administrator, Hawker College  http://hawkerc.net
>
>
> BodyID:76586272.2.n.logpart (stored separately)
>
>


More information about the samba mailing list