On Wed, 22 Jan 2003, David De Maeyer wrote: > Hi all, > > I am quite new to Radius. I installed FreeRadius 0.8.1 and > it runs fine. We have some local users in the users file, other > users are authenticated via our LDAP server. As far I can see > we only need to bind to the LDAP server to authenticate them > but it seems the rlm_ldap module first search for the users. > In our case we have some users which are not searchable. > > That means the authentication fails. rlm_ldap first search for > the user but can't find it. > > Is therefore possible to only bind to the LDAP server without > searching for the users?
You have to first find the user dn. Anyway you could create a Ldap-UserDn attribute by use of the attr_rewrite module, add it in the config attribute list and it should work. Something like: attribute = Ldap-UserDn replacewith = "uid=%{User-Name},ou=people,dc=company,dc=com" new_attribute = yes authorize{ [...] attr_rewrite } > > Is it something to do with the identity flag in rlm_ldap? > > Regards, > > David > ___________________________________________________ > David De Maeyer > Roskilde University Center > Computer Science Department > Box 260, Hus 42.1 > 4000 Roskilde > Denmark > voice (+45) 46 74 38 29 fax (+45) 46 74 30 72 > > -- Kostas Kalevras Network Operations Center [EMAIL PROTECTED] National Technical University of Athens, Greece Work Phone: +30 210 7721861 'Go back to the shadow' Gandalf - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html