Does anybody have this configuration working (or know for a fact that it will or will not)? I have it working without tls just fine right now.
I am trying to get TLS to work with rlm_ldap, but am still having problems.
Solaris 9 freeradius-0.8.1 openldap-2.0.11 SDK Iplanet Directory Server 5.1
I am wondering if using the openldap libraries when building rlm_ldap is having a problem connecting to an Iplanet Directory Server.
Here is the output from the radiusd when I try to do a radtest
rad_recv: Access-Request packet from host 127.0.0.1:48505, id=70, length=59
User-Name = "test_user"
User-Password = "secret"
NAS-IP-Address = 255.255.255.255
NAS-Port = 0
modcall: entering group authorize
rlm_ldap: - authorize
rlm_ldap: performing user authorization for test_user
radius_xlat: '(uid=test_user)'
radius_xlat: 'ou=people,dc=brown,dc=edu'
ldap_get_conn: Got Id: 0
rlm_ldap: attempting LDAP reconnection
rlm_ldap: (re)connect to directory.cis-qas.brown.edu:389, authentication 0
rlm_ldap: starting TLS
rlm_ldap: ldap_start_tls_s()
rlm_ldap: could not start TLS Success
rlm_ldap: (re)connection attempt failed
rlm_ldap: search failed
ldap_release_conn: Release Id: 0
modcall[authorize]: module "ldap" returns fail
modcall: group authorize returns fail
Finished request 0
Going to the next request
--- Walking the entire request list ---
Waking up in 5 seconds...
rad_recv: Access-Request packet from host 127.0.0.1:48505, id=70, length=59
Dropping packet from client localhost:48505 - ID: 70 due to dead request 0
--- Walking the entire request list ---
Waking up in 3 seconds...
--- Walking the entire request list ---
Cleaning up request 0 ID 70 with timestamp 3e75d141
Nothing to do. Sleeping until we see a request.- List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
