[RADIATOR] ADSI auth from Linux

Heikki Vatiainen hvn at open.com.au
Wed Jul 26 18:59:54 UTC 2017

On 25.07.2017 19:20, Eric W. Bates wrote:

> Am I correct in understanding that Win32::OLE is only available to perl
> installs on Windows?

Yes, that's correct.

> How do I authenticate to Active Directory from Linux?

In addition to AuthBy LDAP2, as suggested by Alexander, AuthBy NTLM is 
often used with Linux. With AuthBy LDAP2 you can authenticate only plain 
text password authentication (PAP), but it allows you to search the 
directory as the part of the authentication process.

AuthBy NTLM supports MSCHAPv2, so you can do PEAP/EAP-MSCHAPv2 with it, 
in addition to PAP. However, if you need to do directory lookups, you'd 
need to do separate search with AuthBy LDAP2.

AuthBy NTLM requires that Samba's winbindd is up and running before it 
works. AuthBy NTLM uses ntlm_auth that comes with Samba. Once ntlm_auth 
and winbindd that ntlm_auth uses both work, then AuthBy NTLM should work 

AuthBy LDAP2 requires just LDAPS connection, so it's often easier to set up.


Heikki Vatiainen <hvn at open.com.au>

More information about the radiator mailing list