Network Policy Server and 802.1x

2015-09-292015-09-29 ScottAD, authentication, dot1x, network, radius, ssoLeave a comment

Here is some material I reference when working with RADIUS authentication.
I plan to post a basic guide here on implementation, as time allows.

Logging format : You’ll need this reference to translate logs. Windows NPS stores logiles in “c:\windows\system32\logfiles\”. They can be useful for troubleshooting.
Reason Codes : Translate the codes from the logs above.
RegEx Usage : Get your Regex on in NPS policies.
Radius Packet Format : Fundamentals.
General NPS : Microsofts general NPS admin documentation.

I have the log files shipping into Elasticsearch/Kibana, translated by Logstash along the way. I’ll post a guide for this eventually, along with the configs etc.

Testing LDAP connections

2015-09-292015-09-29 ScottAD, linux, ssl, sso, ubuntuLeave a comment

Integrating services with LDAP is a good way to keep users/authentication centralised.
The tests below will return a users information, if not you’ll have some information to go off.

Test LDAP

ldapsearch -d 5 -D "CN=BINDUSER,OU=Users,DC=example,DC=company" -s sub -b "dc=example,dc=company" -h myldapserver -p 389 -w <PASSWORD> -x "(sAMAccountName=scott.daniels)"

Test LDAPs

ldapsearch -ZZ -d 5 -D "CN=BINDUSER,OU=Users,DC=example,DC=company" -s sub -b "dc=example,dc=company" -h myldapserver -p 636 -w <PASSWORD> -x "(sAMAccountName=scott.daniels)"

Scott Daniels

An IT guy from NZ

AD

Network Policy Server and 802.1x

Testing LDAP connections