Skip to content

Instantly share code, notes, and snippets.

View nazunalika's full-sized avatar

Louis nazunalika

47 followers · 0 following
View GitHub Profile
@nazunalika
nazunalika / gist:52813c236e1c5467dd0334d5eb70bfd6
Created April 15, 2021 18:39
### Keybase proof
I hereby claim:
* I am nazunalika on github.
* I am nazunalika (https://keybase.io/nazunalika) on keybase.
* I have a public key ASC3QKa8P9TvOLgegKU9NoRKAuhU1RS8rB1AOQ2fgTnovwo
To claim this, I am signing this object:
@nazunalika
nazunalika / gist:245f0f3c174a9ae129078567b0d645f6
Last active May 22, 2023 07:47
FreeIPA + FreeRADIUS Permissions
# Create the service
ipa service-add 'radius/radiusserver.example.com'
ipa service-add-host --hosts=radiusserver.example.com radius/radiusserver.example.com
# You need the role and permissions
ipa role-add "samba/radius auth"
ipa privilege-add "NTLM Password Hash Access"
ipa permission-add "Read Samba NTLM RC4 Password Hash attribute" --attrs=ipaNTHash --attrs=sambaNTPassword --attrs=sambaPwdLastSet --attrs=sambaSID --attrs=sambaAcctFlags --attrs=sambaDomainName --type=user --right=read --right=compare
ipa privilege-add-permission "NTLM Password Hash Access" --permissions="Read Samba NTLM RC4 Password Hash attribute"