On 21/10/08 14:10, "John Hawkes-Reed" <[EMAIL PROTECTED]>
wrote:
> Hello.
>
> I'm attempting to bring up a FreeRadius-2.1.1 rig that auths against AD.
> NTLM authentication seems to work well, but LDAP authorisation appears to
> hit a problem when extracting the DN:
[ Debug output ]
> I can find a similar bug mentioned in the archives, but that appeared to be
> an older version of the code.
>
> Hopefully that's enough debug to enable someone to point me in the right
> direction. (Other than 'Don't use AD then...')
Hm. Adding '(&(objectClass=Group)(member=%{check:Ldap-UserDn}))' to the
group membership filter in the LDAP module appears to fix the problem.
Sorry for the noise. (And the disclaimer. Ugh.)
--
John Hawkes-Reed
Systems Administrator. Future Publishing. x 2526
--
Future Publishing Limited (registered company number 2008885) is a wholly owned
subsidiary of Future plc (registered company number 3757874), both of which are
incorporated in England and Wales and share the same registered address at
Beauford Court, 30 Monmouth Street, Bath BA1 2BW.
This email and any files transmitted with it are confidential and intended
solely for the use of the individual or entity to which they are addressed. If
you have received this email in error please reply to this email and then
delete it. Please note that any views or opinions presented in this email are
solely those of the author and do not necessarily represent those of Future.
The recipient should check this email and any attachments for the presence of
viruses. Future accepts no liability for any damage caused by any virus
transmitted by this email.
Future may regularly and randomly monitor outgoing and incoming emails and
other telecommunications on its email and telecommunications systems. By
replying to this email you give your consent to such monitoring.
*****
Save resources: think before you print.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
