On Tue, 8 Jun 2004, Zoltan Ori wrote: > Some of us are pretty dense. > > Here is the debug output from the server. > > rad_recv: Access-Request packet from host 127.0.0.1:51644, id=140, length=93 > User-Name = "m0999999" > User-Password = "test123" > NAS-IP-Address = 147.133.230.16 > Message-Authenticator = 0x820f1368d333bb1f3bab23e9b92325f7 > NAS-Port = 0 > EAP-Message = 0x02d2000d016d30393939393939 > Tue Jun 8 11:16:03 2004 : Debug: rlm_ldap: - authorize > Tue Jun 8 11:16:03 2004 : Debug: rlm_ldap: performing user authorization for > m0999999 > Tue Jun 8 11:16:03 2004 : Debug: radius_xlat: '(uid=m0999999)' > Tue Jun 8 11:16:03 2004 : Debug: radius_xlat: 'dc=morehead-st,dc=edu' > Tue Jun 8 11:16:03 2004 : Debug: rlm_ldap: ldap_get_conn: Checking Id: 0 > Tue Jun 8 11:16:03 2004 : Debug: rlm_ldap: ldap_get_conn: Got Id: 0 > Tue Jun 8 11:16:03 2004 : Debug: rlm_ldap: performing search in > dc=morehead-st,dc=edu, with filter (uid=m0999999) > request 10 done > Tue Jun 8 11:16:03 2004 : Debug: rlm_ldap: looking for check items in directory... > Tue Jun 8 11:16:03 2004 : Debug: rlm_ldap: Adding class as MSU-Class, value > facstaff & op=21 > Tue Jun 8 11:16:03 2004 : Debug: rlm_ldap: looking for reply items in directory... > Tue Jun 8 11:16:03 2004 : Debug: rlm_ldap: user m0999999 authorized to use remote > access > Tue Jun 8 11:16:03 2004 : Debug: rlm_ldap: ldap_release_conn: Release Id: 0
Please read and understand the password_attribute and password_header configuration directives. They are the only ones needed for you to configure password extraction. Also make sure that the user rlm_ldap uses to connect to the ldap server has the privilege to read other users passwords. OK i think we need to make a separate section in the FAQ about how exactly to configure rlm_ldap to extract user passwords and what to look for. It seems that users are still having trouble with things like this. I '' try and work on something like that. -- Kostas Kalevras Network Operations Center [EMAIL PROTECTED] National Technical University of Athens, Greece Work Phone: +30 210 7721861 'Go back to the shadow' Gandalf - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html