Problem solved. I downloaded LDAP browser from SOFTerra and saw all the info that I need.
The correct is: CN=Administrator,CN=Users,DC=office,DC=netsystems,DC=pt Regards, Hugo Sousa SysAdmin / NetworkAdmin http://www.netsystems.pt Portugal -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Dustin Doris Sent: sexta-feira, 10 de Setembro de 2004 15:59 To: [EMAIL PROTECTED] Subject: RE: LDAP (continued...) Install windows 2000 support tools, if you don't have them installed already. You'll have to check your server CDs or microsoft's website to find them. Once you have Windows 2000 Support Tools installed login to the AD machine as the administrator. Then go to Control Panel, Administrative Tools, Windows 2000 Support Tools, Tools, and finally ADSI Edit. That will give you a view into the LDAP tree of your server. As suggested in a previous post, it looks like the users are stored in cn=users as default, so if you didn't change anything when you set it up, you may want to just give that a shot. Hope that is helpful. Dusty Doris On Fri, 10 Sep 2004, sousa.hugo wrote: > I don't have an LDAP browser. > > It's a simple Windows 2000 Server with AD installed. > > How can I install the LDAP browser so that my FR works? Please give me > an ideia :-) > > -----Original Message----- > From: [EMAIL PROTECTED] on behalf of Dustin Doris > Sent: Fri 9/10/2004 1:27 AM > To: [EMAIL PROTECTED] > Cc: > Subject: RE: LDAP (continued...) > > > > > > On Thu, 9 Sep 2004, sousa.hugo wrote: > > > I'm using the Domain ADMINISTRATOR account, so it should have access to everything. > > > > I think the problem is in one of this lines: > > > > identity = "cn=administrator,dc=office,dc=netsystems,dc=pt" > > password = password > > basedn = "dc=office,dc=netsystems,dc=PT" > > Yes that is where the problem is. > > > > Is the syntax incorrect? My domain is called "office.netsystems.pt". > > The syntax is correct. However, are you sure that is the correct info for > that user? Do you have access to an ldap browser on that machine that > will show the tree for you? > > > > > > > > > -----Original Message----- > > From: [EMAIL PROTECTED] on behalf of Dustin Doris > > Sent: Thu 9/9/2004 7:40 PM > > To: [EMAIL PROTECTED] > > Cc: > > Subject: Re: LDAP (continued...) > > > > > > > > > > > My Windows 2000 domain is "office.netsystems.pt". The user I'm using is > > > administrator. > > > > Does this user actually exist in your ldap directory with that password? > > You will need to find a user that exists in your AD that has read access > > to the part of the tree your users are in. > > > > > > > > Is this wrong? > > > > > > > > > ldap { > > > server = "192.168.2.1" > > > identity = "cn=administrator,dc=office,dc=netsystems,dc=pt" > > > password = "password" > > > basedn = "dc=office,dc=netsystems,dc=PT" > > > filter = "(uid=%{Stripped-User-Name:-%{User-Name}})" > > > # base_filter = "(objectclass=radiusprofile)" > > > (.) > > > } > > > > > > > > > Something is wrong because I'm getting: > > > > > > rlm_ldap: LDAP login failed: check identity, password settings in ldap > > > section of radiusd.conf > > > rlm_ldap: (re)connection attempt failed > > > rlm_ldap: search failed > > > rlm_ldap: ldap_release_conn: Release Id: 0 > > > modcall[authorize]: module "ldap" returns fail for request 0 > > > > > > > > > > > > > > > What should I change to correct this problem? > > > > > > Thanks. > > > > > > > > > Regards, > > > > > > Hugo Sousa > > > > > > > - > > List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html > > > > > > > > - > List info/subscribe/unsubscribe? See > http://www.freeradius.org/list/users.html > > > - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
