Hello, I tried various settings to authenticate my PPP (l2tp) users via winbind (ntlm_auth), without success... I use ppp 2.4.3 and Samba 3.0.22-2tr. My distribution is Trustix 2.2 What is working : - mschapv2 authentication with chap-secrets (nomppe, novj, novjccomp) - wbinfo -g, wbinfo -u, getent passwd and getent group - net ads info and net ads status - ntlm_auth --username X --domain Y What is not working : - ntlm_auth --username X --domain Y --diagnostics - authentication with the winbind plugin in options.l2tpd I verified the paths to the winbind plugin and to ntlm_auth, and both are ok... Any ideas ? Thank you ! S?bastien _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ Ce message ainsi que tout fichier joint est confidentiel et est uniquement destin? ? la personne ou entit? ? laquelle il est adress?. Si vous avez re?u ce message par erreur, veuillez le d?truire imm?diatement et avertir l'?metteur du message. Veuillez noter que vous pouvez maintenant utiliser le nouveau format d'adresses : @ville.saint-georges.qc.ca This e-mail and any files transmitted with it are confidential and intended solely for the use of the individual or entity to whom they are addressed. If you have received this e-mail in error please delete this message and notify the originator of the message. Please note that you can now use the new email address format : @ville.saint-georges.qc.ca
On Mon, 2006-11-27 at 15:42 -0500, Leclerc, S?bastien wrote:> Hello, > > I tried various settings to authenticate my PPP (l2tp) users via > > winbind (ntlm_auth), without success... I use ppp 2.4.3 and Samba > > 3.0.22-2tr. My distribution is Trustix 2.2 > > > > What is working : > > - mschapv2 authentication with chap-secrets (nomppe, novj, novjccomp) > > - wbinfo -g, wbinfo -u, getent passwd and getent group > > - net ads info and net ads status > > - ntlm_auth --username X --domain Y > > > > What is not working : > > - ntlm_auth --username X --domain Y --diagnostics > > - authentication with the winbind plugin in options.l2tpd > > > > I verified the paths to the winbind plugin and to ntlm_auth, and both are ok... > > Any ideas ?What user are you running ntlm_auth as? They must be in the group that can access the privileged pipe. Andrew Bartlett -- Andrew Bartlett http://samba.org/~abartlet/ Authentication Developer, Samba Team http://samba.org Samba Developer, Red Hat Inc. http://redhat.com -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 189 bytes Desc: This is a digitally signed message part Url : http://lists.samba.org/archive/samba/attachments/20061209/3372c00f/attachment.bin