On Wed, 5 May 2004, Craig Huckabee wrote:
>
>
> Kostas Kalevras wrote:
>
> >
> > The above won't work. You can't just add the User-Name line in the rlm_ldap
> > configuration and expect it to work.
>
> I didn't expect it to just work, but I wanted to at least try something
> before posting a question. The documentation isn't as clear as your
> answer so I was grasping at straws.
>
>
> >
> > You can either use rlm_attr_rewrite to strip the 'host/' part, or probably add
> > a Hint variable in the users file and use that as the filter:
> >
> > --users--
> > DEFAULT User-Name =~ "^([^/]+)/(.*)", Hint := `%{2}`
> >
> > --radiusd.conf--
> > ldap {
> > filter = "(cn=%{check:Hint})"
> > ...
> > }
> >
> >
>
> I tried adding the expression to the users file as you suggest - that
> doesn't appear to work either. I still end up with a cn='' filter. Any
> other ideas are greatly appreciated.
The other idea is to use attr_rewrite as already suggested. In any case, make
sure that the files module comes before ldap in the authorize section for the
above to work.
>
> Thanks,
> Craig
>
>
> -
> List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
>
--
Kostas Kalevras Network Operations Center
[EMAIL PROTECTED] National Technical University of Athens, Greece
Work Phone: +30 210 7721861
'Go back to the shadow' Gandalf
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
