[RADIATOR] NTLM/Samba Auth and OUs
vartiait at open.com.au
vartiait at open.com.au
Thu May 5 03:28:56 CDT 2016
Hello,
On Wednesday, 4 May, 2016 18:05, "Ullfig, Roberto Alfredo" <rullfig at uic.edu> said:
>
> Can Radiator restrict access to an
> OU or can this be done in Samba?
>
ntlm_auth has an optional parameter --require-membership-of={SID|Name}
which could be used to restrict access only for members of certain group.
(ref: https://www.samba.org/samba/docs/man/manpages/ntlm_auth.1.html)
<AuthBy NTLM>
...
NtlmAuthProg /usr/bin/ntlm_auth --helper-protocol=ntlm-server-1 --require-membership-of='WORKGROUP\Domain Users'
...
</AuthBy>
BR
--
Tuure Vartiainen
Radiator: the most portable, flexible and configurable RADIUS server
anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald,
Platypus, Freeside, TACACS+, PAM, external, Active Directory, EAP, TLS,
TTLS, PEAP, TNC, WiMAX, RSA, Vasco, Yubikey, MOTP, HOTP, TOTP,
DIAMETER etc. Full source on Unix, Windows, MacOSX, Solaris, VMS,
NetWare etc.
More information about the radiator
mailing list