FreeRADIUS WPA2-Enterprise Windows Active Directory
Revision as of 14:39, 14 October 2016 by Michael.mast (talk | contribs)
[root@radius02 ~]# yum install samba-winbind-clients samba [root@radius02 ~]# mv /etc/samba/smb.conf /etc/samba/smb.conf.bak [root@radius02 ~]# nano /etc/samba/smb.conf [global] workgroup = your security = ads password server = your.domain.net realm = your.domain.net [root@radius02 ~]# nano /etc/krb5.conf [realms] # EXAMPLE.COM = { # kdc = kerberos.example.com # admin_server = kerberos.example.com # } your.domain.net = { kdc = **your.domain.net** } [root@radius02 ~]# systemctl start smb [root@radius02 ~]# net join -u Administrator [root@radius02 ~]# systemctl start winbind [root@radius02 ~]# ntlm_auth --request-nt-key --domain=domain --username=user --password=password NT_STATUS_OK: Success (0x0) [root@radius02 ~]# nano /etc/raddb/mods-available/ntlm_auth exec ntlm_auth { wait = yes program = "/usr/bin/ntlm_auth --request-nt-key --domain=your --username=%{mschap:User-Name} --password=%{User-Password}" }
[root@radius02 ~]# nano /etc/raddb/mods-available/mschap