updated note about Active Directory

diff --git a/raddb/radiusd.conf.in b/raddb/radiusd.conf.in
index 20852ff..b0f29ff 100644 (file)
--- a/raddb/radiusd.conf.in
+++ b/raddb/radiusd.conf.in
@@ -724,18 +724,14 @@ $INCLUDE ${confdir}/eap.conf
        #
        #  This means that LDAP servers don't understand EAP.  If you
        #  force "Auth-Type = LDAP", and then send the server a
-       #  request containing EAP authentication, then the
-       #  authentication WILL NOT WORK.
+       #  request containing EAP authentication, then authentication
+       #  WILL NOT WORK.
        #
        #  The solution is to use the default configuration, which does
        #  work.
        #
        #  Setting "Auth-Type = LDAP" is ALMOST ALWAYS WRONG.  We
        #  really can't emphasize this enough.
-       #
-       #  Note that Active Directory is *not* a real LDAP server.  In
-       #  order to authenticate users in Active Directory, you have
-       #  to use ntlm_auth.  See the "mschap" module, above, for details.
        #       
        ldap {
                server = "ldap.your.domain"