@@ -64,8 +64,8 @@ mschap {
6464 #
6565 # Call ntlm_auth through the logging wrapper. Make sure to preserve the -- separator to distinguish between
6666 # the args to the wrapper and those to the ntlm_auth executable itself
67- ntlm_auth = "/usr/local/pf/bin/ntlm_auth_wrapper -- \
68- --request-nt-key --username=%{%{Stripped-User-Name}:-%{ mschap:User-Name:-None} } --challenge=%{mschap:Challenge:-00} --nt-response=%{mschap:NT-Response:-00}"
67+ ntlm_auth = "/usr/local/pf/bin/ntlm_auth_wrapper -- \
68+ --request-nt-key --username=%{mschap:User-Name:-None} --challenge=%{mschap:Challenge:-00} --nt-response=%{mschap:NT-Response:-00}"
6969
7070 # ntlm_auth should take less than three seconds.
7171 # If it takes longer than that, something is probably wrong.
@@ -143,11 +143,10 @@ mschap chrooted_mschap {
143143 # attribute, and do prefix/suffix checks in order to obtain
144144 # the "best" user name for the request.
145145 #
146- # Call ntlm_auth through the logging wrapper. Make sure to preserve the -- separator to distinguish between
147- # the args to the wrapper and those to the ntlm_auth executable itself
148- ntlm_auth = "/usr/bin/sudo /usr/sbin/chroot /chroots/%{PacketFence-Domain} /usr/local/pf/bin/ntlm_auth_wrapper -- \
149- --request-nt-key --username=%{%{mschap:User-Name:-None}:-%{Stripped-User-Name}} --challenge=%{mschap:Challenge:-00} --nt-response=%{mschap:NT-Response:-00}"
150-
146+ # Call ntlm_auth through the logging wrapper. Make sure to preserve the -- separator to distinguish between
147+ # the args to the wrapper and those to the ntlm_auth executable itself
148+ ntlm_auth = "/usr/bin/sudo /usr/sbin/chroot /chroots/%{PacketFence-Domain} /usr/local/pf/bin/ntlm_auth_wrapper -- \
149+ --request-nt-key --username=%{mschap:User-Name:-None} --challenge=%{mschap:Challenge:-00} --nt-response=%{mschap:NT-Response:-00}"
151150
152151 # ntlm_auth should take less than three seconds.
153152 # If it takes longer than that, something is probably wrong.
0 commit comments