[RADIATOR] Support for domains in EAP?

Heikki Vatiainen hvn at open.com.au
Tue Aug 31 13:12:39 UTC 2021


On 30.8.2021 19.43, Ullfig, Roberto Alfredo wrote:
> Hmm, looks like I need to use NtlmRewriteHook.

This hook allows you to change the username as required. It origially 
was added to allow roaming, for example with eduroam, when the local 
domain was something unroutable, such as organisation.local.

With NtlmRewriteHook and LSARewriteHook it's possible to user routable 
usernames, user at organisation.edu, with Wi-Fi while the actual 
authentication must be done with user at organisation.local.

> ---
> Roberto Ullfig - rullfig at uic.edu
> Systems Administrator
> Enterprise Applications & Services | Technology Solutions
> University of Illinois - Chicago
> ------------------------------------------------------------------------
> *From:* radiator <radiator-bounces at lists.open.com.au> on behalf of 
> Ullfig, Roberto Alfredo <rullfig at uic.edu>
> *Sent:* Monday, August 30, 2021 10:41 AM
> *To:* radiator at lists.open.com.au <radiator at lists.open.com.au>
> *Subject:* [RADIATOR] Support for domains in EAP?
> The way we have WiFi setup now - users must type in just their netid (no 
> domain) - and we're using  <AuthBy NTLM> with Samba but we'd like to 
> support netid at domain. Is there a way this can be done? I tried a Rewrite 
> Handler to remove the domain but it looks like the domain is still there 
> when the NTLM Auth is made.

Thanks,
Heikki

-- 
Heikki Vatiainen
OSC, makers of Radiator
Visit radiatorsoftware.com for Radiator AAA server software


More information about the radiator mailing list