# apt-get install freeradius
# usermod -aG winbindd_priv freerad
# vi /etc/samba/smb.conf
[global]
server string = RADIUS server
# ntlm_auth –username=JSHOuser –domain=VA-DOM-1.LOCAL
Password:
NT_STATUS_OK: Success (0x0)
# vi /etc/freeradius/3.0/mods-enabled/mschap
mschap
{
winbind_username = „%{mschap:User-Name}“
winbind_domain = „VA-DOM-1.LOCAL“
}
# systemctl restart freeradius
# radtest -t mschap JSHOuser <passwotd> 127.0.0.1 0 testing123
Sent Access-Request Id 155 from 0.0.0.0:40063 to 127.0.0.1:1812 length 134
User-Name = „JSHOuser“
MS-CHAP-Password = „password“
NAS-IP-Address = 127.0.1.1
NAS-Port = 0
Message-Authenticator = 0x00
Cleartext-Password = „password“
MS-CHAP-Challenge = 0x02d4f122bdca9d9d
MS-CHAP-Response = 0x00010…04c623ae3b714858acfe1f0114bb8cea2f1b93c9d2cf47dc
Received Access-Accept Id 155 from 127.0.0.1:1812 to 0.0.0.0:0 length 84
MS-CHAP-MPPE-Keys = 0x0000000000000000636f12c756a1009502cd94f1a7b3431a
MS-MPPE-Encryption-Policy = Encryption-Allowed
MS-MPPE-Encryption-Types = RC4-40or128-bit-Allowed
# freeradius -X
This entry was posted on Samstag, Januar 6th, 2018 at 16:52 and is filed under Administration, Raspberry Pi. You can follow any responses to this entry through the RSS 2.0 feed.
You can leave a response, or trackback from your own site.