On Tue, 16 Mar 2004, Nicolas JUSTIN wrote: > Hello, > > I try to authorize users through LDAP, and autorize them by CHAP. > I added LDAP attributes wich I want to be returned to the NAS in > ldap.atttrmap, it works perfectly for single value attribute, but not for > multi-attributes values. > I read in the archive that I have to add a "+=" operator in ldap.attrmap,
That was never written in the archives. You just need to use the += operator in the attribute *values*. Something like (ldap entries): uid=myuser,ou=people,dc=mycompany,dc=com objectclass: radiusprofile myradiusattribute: value1 myradiusattribute: += value2 myradiusattribute: += value3 > but I can't find a correct syntax to achieve it correctly. > > BTW, I have tried to modify rlm_ldap.c (line 1269), in this way: > if ((reply_tmp = ldap_pairget(conn->ld, msg,inst->reply_item_map, > reply_pairs,0)) != NULL) { > pairadd(reply_pairs,reply_tmp); > /*pairxlatmove(request, reply_pairs, &reply_tmp);*/ > pairfree(&reply_tmp); > } > > It only work in some cases... I concluded that it was not the best way :) > > > Please, tell me if you want some specific(s) part(s) of my configuration. > Test with NTRadping 1.5 > FreeRADIUS 0.9.3 on Solaris 5.8 > > > -- > Nicolas Justin > > > > - > List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html > -- Kostas Kalevras Network Operations Center [EMAIL PROTECTED] National Technical University of Athens, Greece Work Phone: +30 210 7721861 'Go back to the shadow' Gandalf - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html