---------- Forwarded Message ----------
Subject: BOUNCE [EMAIL PROTECTED]: Non-member submission from
[[EMAIL PROTECTED]]
Date: Thu, 24 Jan 2002 04:17:29 -0600
From: [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
>From [EMAIL PROTECTED] Thu Jan 24 04:17:29 2002
Received: from SMTPTSystems.T-Systems.it ([151.39.62.135])
by server1.open.com.au (8.11.0/8.11.0) with ESMTP id g0OAHR319325
for <[EMAIL PROTECTED]>; Thu, 24 Jan 2002 04:17:28 -0600
Subject: Problem with NT Authentication
To: [EMAIL PROTECTED]
From: [EMAIL PROTECTED]
Date: Thu, 24 Jan 2002 12:48:33 +0100
Message-ID: <[EMAIL PROTECTED]>
X-MIMETrack: Serialize by Router on VI001G01/SMTP/T-Systems/IT(Release 5.0.5
|September 22, 2000) at 01/24/2002 12:45:36 PM
MIME-Version: 1.0
Content-type: text/plain; charset=us-ascii
Hi all,
I've a big problem, I would like to use Radiator to switch the RAS
authentication requests to a NT server . Radiator is installed on Linux
server.
If in the RADIUS.CFG file I add the "NoCheckPassword" parameter the
authentication takes place, otherwise on the Log of the RADIUS I have this
error message:
"INFO: Access rejected for domain\user: NT Authentication failed: Server
Error (1)"
on my Cisco AS5300 i've codified to use chap, pap and ms-chap for PPP
authentication. I don't know because this happen, on the event view of NT
there is no errors messages.
This is my radius.cfg :
<AuthBy NT>
Identifier NT
# You must set the domain name here to suit your site:
Domain administrator
# ON NT, optionally specify the name of the
# Primary Domain Controller, including the leading
# \\ slashes, to override the default domain controller
# for the domain you specified above
# DomainController \\romeo
# On Unix, you MUST specify the Domain Controller
# name as the NT host name of the domain controller:
# its not optional. This needs to be set to the NT
# name of the Primary Domain Controller, and further
# the NT name must be in the Unix hosts or DNS
DomainController server.domain.it
# On NT, you can optionally check the
# "Grant dialin permission to user" flag in the
# user manager. Requires the
# Win32-RasAdmin Perl package to be installed first
# HonourDialinPermission
# This will set up some standard reply items for
# your NAS, you may need others for your NAS
DefaultReply Service-Type=Framed-User,Framed-Protocol=PPP
# NoCheckPassword
</AuthBy>
<AuthBy DYNADDRESS>
Identifier All-NT
Allocator SQLAllocator
PoolHint pool-NT
</AuthBy>
<Realm DEFAULT>
RejectHasReason
AuthByPolicy ContinueWhileAccept
AuthBy NT
AuthBy All-NT
</Realm>
Could anyone help me ?
Please !!!
Gionata Lamia
Networking Services/Systems Integrations
T-Systems Italia S.p.A.
Strada 2 Palazzo D
20090 - Assago - MI
Phone: +39 02 89248240
Fax: +39 02 89248231
Mobile: +39 348 4521210
e-mail: [EMAIL PROTECTED]
Internet: http://www.T-Systems.it
-------------------------------------------------------
--
Mike McCauley [EMAIL PROTECTED]
Open System Consultants Pty. Ltd Unix, Perl, Motif, C++, WWW
24 Bateman St Hampton, VIC 3188 Australia http://www.open.com.au
Phone +61 3 9598-0985 Fax +61 3 9598-0955
Radiator: the most portable, flexible and configurable RADIUS server
anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald,
Platypus, Freeside, TACACS+, PAM, external, Active Directory etc etc
on Unix, Win95/8, 2000, NT, MacOS 9, MacOS X
===
Archive at http://www.open.com.au/archives/radiator/
Announcements on [EMAIL PROTECTED]
To unsubscribe, email '[EMAIL PROTECTED]' with
'unsubscribe radiator' in the body of the message.
