Dirk Enrique Seiffert wrote:
> I set ldap in authorize {} and authenticate {}. In users I added
>>
> DEFAULT Auth-Type := LDAP
> Fall-Through = 1
Why? That's not necessary.
> When i try to connect from an pptp client my logs show:
>
> Tue Dec 12 19:07:31 2006 : Debug: rlm_ldap: Added password
> {md5}rcBovg3Uck47CSFRhqdtdQ== in check items
1.1.3 doesn't really support that.
> Tue Dec 12 19:07:31 2006 : Debug: rlm_ldap: looking for check items in
> directory...
> Tue Dec 12 19:07:31 2006 : Debug: rlm_ldap: Adding sambaNTPassword as
> CHAP-Password, value 80B328568267E5A48ACD43F6F67DAD2F & op=21
Huh? It looks like you edited the "ldap.attrmap" file. Why?
...
> Tue Dec 12 19:07:31 2006 : Debug: auth: type Local
> Tue Dec 12 19:07:31 2006 : Debug: auth: No User-Password or CHAP-Password
> attribute in the request
>
> Auth seems to fall back to local, why?
Because it didn't reach the "users" file entry you added. Read the
rest of the debug log (i.e. the part you DIDN'T post here) to see why.
Alan DeKok.
--
http://deployingradius.com - The web site of the book
http://deployingradius.com/blog/ - The blog
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
