> u...@3.am wrote:
>> Trying to set up a new RADIUS 2.1.12 server with LDAP. It configured and
>> built
>> all the modules I need, including rlm_ldap, once I installed the
>> dependencies.
>> I
>> took all of the same config files that I have working on servers running
>> 2.1.9
>> and
>> 2.1.10, but 2.1.12 rlm_ldap doesn't seem to finish instantiating. Here's
>> most
>> of
>> the debug:
>
> You edited the default configuration and broke it.
>
> You deleted the default "ldap" module. You added "ldap1" and "ldap2".
>
> Then, the "authenticate" section refers to "ldap", which doesn't exist.
>
> Make sure that you refer to modules which exist.
That's the first thing I checked in raddb/sites-available/default but "ldap" is
commented out in the auth (and accounting) section. Here is what I have, which
is
at this point is the entire raddb directory lifted out of two older versions
that
are running fine:
authorize {
preprocess
redundant LDAP{
ldap1
ldap2
}
# The ldap module will set Auth-Type to LDAP if it has not
# already been set
# ldap
authenticate {
#Auth-Type LDAP {
redundant LDAP{
ldap1
ldap2
}
accounting {
# Un-comment the following if you have set
# 'edir_account_policy_check = yes' in the ldap module sub-section of
# the 'modules' section.
#
# ldap
HOWEVER, I do refer to the ldap module in the radiusd.conf, but this is how I
got
it working with redundant LDAP servers in the first place.
ldap ldap1{
server = "ldap1.domain.com"
basedn = "dc=domain,dc=com"
filter = "(uid=%{Stripped-User-Name:-%{User-Name}})"
ldap_connections_number = 5
timeout = 4
timelimit = 3
net_timeout = 1
ldap ldap2{
server ="ldap2.domain.com"
basedn = "dc=domain,dc=com"
filter = "(uid=%{Stripped-User-Name:-%{User-Name}})"
ldap_connections_number = 5
timeout = 4
timelimit = 3
net_timeout = 1
This is how I understood to define more than one ldap source and it does work
on 2
older servers, as I noted. Is there something outside of raddb that I missed?
Thanks again!
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
