freeradius and active directory
sylvester_rutger at hotmail.com
Sun Dec 23 09:57:09 CET 2007
> You don't. You do LDAP queries.
So where do I specify them and how should a query look like ?
freeradius-users-bounces+sylvester_rutger=hotmail.com at lists.freeradius.org
[mailto:freeradius-users-bounces+sylvester_rutger=hotmail.com at lists.freeradi
us.org] On Behalf Of Alan DeKok
Sent: Sunday, December 23, 2007 1:03 AM
To: FreeRadius users mailing list
Subject: Re: freeradius and active directory
Rutger Beyen wrote:
> If I have to contact the AD with the ldap protocol for the vlan, why can't
> just use that way to verify the user's credentials?
AD can verify credentials, if FreeRADIUS sees a clear-text password in
the RADIUS request.
Otherwise, it's impossible. AD is *not* an LDAP server, even though
it appears to be one.
> The use Ntlm must be configured in radiusd.conf, but how and were do I
> configure the ldap bind to get the users group and define the vlan?
You don't. You do LDAP queries.
List info/subscribe/unsubscribe? See
More information about the Freeradius-Users