[Samba] samba 4.4.2 freeradius authentication with ntlm_auth
Luca Olivetti
luca at wetron.es
Fri Apr 15 13:16:28 UTC 2016
El 15/04/16 a les 13:45, Luca Olivetti ha escrit:
> El 15/04/16 a les 13:06, barış tombul ha escrit:
>> Hi;
>> Samba team say "It is recommended that administrators set these
>> additional
>> options, if compatible with their network environment:"
>>
>>
>> ntlm auth = no
>>
>>
>> I use samba with FreeRadius.
>>
>>
>> I configure "ntlm_ auth = no" but freeradius users not connected to
>> wifi.
>>
>>
>> I use ntlm_auth in FreeRadius side..
>>
>
>
> I found this
> http://freeradius.1045715.n5.nabble.com/NTLMv2-with-FreeRADIUS-td5726394.html
>
>
> and this
>
> http://freeradius.1045715.n5.nabble.com/definitive-info-on-authenticating-to-AD-via-NTLMv2-td5719249.html
>
>
> "The problem here is that Samba doesn't have any way to set
> MSV1_0_ALLOW_MSVCHAPV2 when calling the relevant RPC. This is a trivial,
> one-bit flag."
>
> I don't know if this "trivial one-bit flag" made into samba or not :-(
I checked the 4.4.1 sources and, no, it's not there.
Bye
--
Luca Olivetti
Wetron Automation Technology http://www.wetron.es/
Tel. +34 93 5883004 (Ext.3010) Fax +34 93 5883007
More information about the samba
mailing list