Thanks for your replies...
I'm not sure why you say that my LDAP is not working because in the second debug output you can see that I find the object and use it's DN and also extract an attribute from the object. There is no known good password however because AD doesn't store clear-text passwords. The LDAP lookup is not working, however, in the first debug output because I can't use Stripped-User-Name because of nostrip.
In the second debug output I removed nostrip but that strips User-Name (See expanded User-Name and Stripped-User-Name).
I made this setup so that I could keep things separated. I wanted everything for that domain to be handled in it's own virtual-server. I thought that was your idea? Am I misunderstanding virtual-servers?
So... is the conclusion that; this is the behaviour of User-Name when proxied?
-----freeradius-users-bounces+julius.bess=nyherji...@lists.freeradius.org wrote: -----
>To: FreeRadius users mailing list
><freeradius-users@lists.freeradius.org>
>From: Alan DeKok
>Sent by:
>freeradius-users-bounces+julius.bess=nyherji...@lists.freeradius.org
>Date: 07/03/2013 08:28PM
>Subject: Re: Stripped-User-Name not set when using nostrip?
>
>Phil Mayers wrote: > Have you actually *tried* this, because it
>should work. If it doesn't, > it's likely a problem in your local
>config. He's *proxying* the request after stripping the User-Name.
> That's the immediate source of the issue. If he had just used the
>default config, it wouldn't be an issue. And his LDAP lookups
>don't return anything. So even fixing the proxying issues won't
>help. That has to be fixed, too. Alan DeKok. - List
>info/subscribe/unsubscribe? See
>http://www.freeradius.org/list/users.html
- List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
