Can you authenticate without the idenity and password filled out? I can't seem to get it to work without these fields filled out?
Thanks, Ron. ldap ldap_rp-eng{ server = 10.0.0.25 port = 389 #identity = "[EMAIL PROTECTED]" #password = "tester" basedn = "cn=Users,dc=rp-eng,dc=com" filter = "(SamAccountName=%{Stripped-User-Name:-%{User-Name}})" start_tls = no tls_mode = no timeout = 20 net_timeout = 10 timelimit = 20 } [Ron Wahler] rlm_ldap: - authorize rlm_ldap: performing user authorization for rontest radius_xlat: '(SamAccountName=rontest)' radius_xlat: 'cn=Users,dc=rp-eng,dc=com' ldap_get_conn: Got Id: 0 rlm_ldap: attempting LDAP reconnection rlm_ldap: (re)connect to 10.0.0.25:389, authentication 0 rlm_ldap: bind as / to 10.0.0.25:389 rlm_ldap: waiting for bind result ... rlm_ldap: Bind was successful rlm_ldap: performing search in cn=Users,dc=rp-eng,dc=com, with filter (SamAccountName=rontest) rlm_ldap: object not found or got ambiguous search result rlm_ldap: search failed ldap_release_conn: Release Id: 0 modcall[authorize]: module "ldap_rp-eng" returns notfound for request 0 modcall: group autztype returns notfound for request 0 rad_check_password: Found Auth-Type rp-eng auth: type "rp-eng" Processing the authenticate section of radiusd.conf modcall: entering group authtype for request 0 rlm_ldap: - authenticate rlm_ldap: login attempt by "rontest" with password "rontest" radius_xlat: '(SamAccountName=rontest)' radius_xlat: 'cn=Users,dc=rp-eng,dc=com' ldap_get_conn: Got Id: 0 rlm_ldap: performing search in cn=Users,dc=rp-eng,dc=com, with filter (SamAccountName=rontest) rlm_ldap: object not found or got ambiguous search result ldap_release_conn: Release Id: 0 modcall[authenticate]: module "ldap_rp-eng" returns notfound for request 0 modcall: group authtype returns notfound for request 0 auth: Failed to validate the user. Delaying request 0 for 1 seconds Finished request 0 - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html