Moushegh NazaretyanNauT's blog | NauT's blog

About Moushegh Nazaretyan

Sex...linux...rock'n'roll

Once you have the previous steps working, configuring FreeRADIUS to use ntlm_auth for MS-CHAP is simple. First, delete the testing entry used above from the users file, as leaving it in will break other authentication types. Then, fine the mschap module in raddb/modules/mschap file, and look for the line containing ntlm_auth = . It is commented out by default, and should be uncommented, and edited to be as follows. As before, update the fields in bold to match your local configuration.

ntlm_auth = “/path/to/ntlm_auth –request-nt-key –username=%{mschap:User-Name:-None} –domain=%{mschap:NT-Domain:-MYDOMAIN} –challenge=%{mschap:Challenge:-00} –nt-response=%{mschap:NT-Response:-00}”

Start the server and use a test client to send an MS-CHAP authentication request. The radclient cannot currently be used to send this request, unfortunately, which makes testing a little difficult If everything goes well, you should see the server returning an Access-Accept message as above.

Once you have verified that Samba is installed and working correctly, and that the ntlm_auth program works, you can proceed with configuring FreeRADIUS to use ntlm_auth. For initial testing, we will be using the exec module, and will run the exact command line used above.

In the radiusd.conf file, add the following text to the modules section: Continue reading →

Once Samba has been installed on your system, you should edit the smb.conf file, and configure the [global] section to point to your NT server, including hostname and NT domain.

# workgroup = NT-Domain-Name
workgroup = MYDOMAIN
…
# Security mode. Most people will want user level security. See
# security_level.txt for details.
security = ads
# Use password server option only with security = server
password server = nt-server-hostname.company.com
…
realm = realm.company.com

Continue reading →

This post is about squid and how to configure it really fast, I’m putting here my config file of squid that works on core2duo 2 GB ram machine with 500GB hard drive.

First of all we need to install squid ( debian gnu linux)

apt-get install squid

Ok, after we need to go to /etc/squid and edit there few files.

First of all we need to create file flood.txt Continue reading →

PPTPd configuration (debian linux)

for first we need to install PPTP server itself

apt-get install pptpd

after pptpd we need to edit /etc/pptpd.conf

we need to keep only 2 lines there

option /etc/ppp/pptpd-options
logwtmp
localip 10.80.80.1 (change to your server side IP address)
remoteip 10.80.80.2-254 (change to your clients IP address)

we need to add few lines into /etc/ppp/pptp.options Continue reading →

NauT's blog

blog about everthing ….

Author Archives: Moushegh Nazaretyan

About Moushegh Nazaretyan

Lesson 3. freeRadius + mschap

Lesson 2. FreeRADIUS – ntlm_auth

Lesson 1. Samba and AD

squid 2.6 – how to fast config

PPTP configuration