Thanks Alan, my configuration works now. Like always (in radius) just a very few lines of changes in the default config made it:
> Dirk Enrique Seiffert wrote: > >> I set ldap in authorize {} and authenticate {}. In users I added >>> >> DEFAULT Auth-Type := LDAP >> Fall-Through = 1 > > Why? That's not necessary. OK, I went back to the default user file. > >> When i try to connect from an pptp client my logs show: >> >> Tue Dec 12 19:07:31 2006 : Debug: rlm_ldap: Added password >> {md5}rcBovg3Uck47CSFRhqdtdQ== in check items > > 1.1.3 doesn't really support that. > >> Tue Dec 12 19:07:31 2006 : Debug: rlm_ldap: looking for check items in >> directory... >> Tue Dec 12 19:07:31 2006 : Debug: rlm_ldap: Adding sambaNTPassword as >> CHAP-Password, value 80B328568267E5A48ACD43F6F67DAD2F & op=21 > > Huh? It looks like you edited the "ldap.attrmap" file. Why? I am not using the default radius scheme but a custom one. I don't want to receive radius attributes from LDAP but check users. These are the changes I made in ldap.attrmap to fit my LDAP scheme: checkItem LM-Password sambaLMPassword checkItem NT-Password sambaNTPassword Now it works like a charme, thanks again! -- Dirk Enrique Seiffert - Lintec S.A. Ed. Torre del Reloj - Of. 401 Plaza de los Coches, Centro Cartagena - Colombia http://www.lintecsa.com -- Este mensaje ha sido analizado por MailScanner en busca de virus y otros contenidos peligrosos, y se considera que está limpio. http://www.lintecsa.com - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html