That's what I've tried. The authorize section: redundant { # if I comment the folloing line out, the password is accepted, but I get "% Authorization failed." from the switch (this is coused by the incorrect "users" file maybe). files ldap ciscopwd # if I uncomment the following line, freerad won't start # ok = return }
The users file: DEFAULT Auth-Type := Crypt-Local Service-Type = Login-User What's wrong than? And how can I implement LDAP group filtering? Just with the modules section groupdn? Thanks, Tamas ________________________________________ Feladó: [EMAIL PROTECTED] [EMAIL PROTECTED], meghatalmazó: [EMAIL PROTECTED] [EMAIL PROTECTED] Küldve: 2008. október 27. 18:45 Címzett: FreeRadius users mailing list Tárgy: Re: Need help for configuration - LDAP with custom files Failover >I'm facing a problem with Freeradius 2.0.4. I want to make a configuration to >allow our Cisco routers to auth via RADIUS. For this, we're using a password >file now (let's call it ciscopwd) and another file for granting rights. > >I want to change the config file, so that the auth is done by LDAP (plain >passwords), BUT if the LDAP is not available the ciscopwd file will do the >job. How can this be done? (moreover, I want to have some LDAP group >limitations on the logins) > Have a look at these: http://wiki.freeradius.org/Fail-over http://freeradius.org/radiusd/man/unlang.html Ivan Kalik Kalik Informatika ISP - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html