Re: Using LDAP and Realms with v0.81
"Ron Wahler" <[EMAIL PROTECTED]> wrote:
> I guess my question here is how you create 2 ldap instances.
Create a 'second' name for the ldap module:
ldap ldap1 {
...
}
ldap ldap2 {
...
}
Alan DeKok.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
RE: Using LDAP and Realms with v0.81
I guess my question here is how you create 2 ldap instances.
Ron.
-Original Message-
From: Ron Wahler
Sent: Tuesday, April 01, 2003 10:23 AM
To: [EMAIL PROTECTED]
Subject: RE: Using LDAP and Realms with v0.81
How do you tie ldap1 and ldap2 to the ldap module.
Do you create
Ldap1.attrmap
Ldap2.attrmap
And then include them both in the radiusd.conf file ?
# Mapping of RADIUS dictionary attributes to LDAP
# directory attributes.
dictionary_mapping = ${raddbdir}/ldap.attrmap
dictionary_mapping = ${raddbdir}/ldap1.attrmap
dictionary_mapping = ${raddbdir}/ldap2.attrmap
Thanks,
Ron.
-Original Message-
From: Kostas Kalevras [mailto:[EMAIL PROTECTED]
Sent: Monday, March 10, 2003 5:07 AM
To: [EMAIL PROTECTED]
Subject: Re: Using LDAP and Realms with v0.81
On Mon, 10 Mar 2003, Patrick McShane wrote:
>
> Hello,
>
> We're testing v0.81 against our existing LDAP DB and the searches
worked
> fine. Now have LDAP authentication working too. We also need to
pull
> different Radius attributes from LDAP depending on Realm name
> ([EMAIL PROTECTED]). Are there any examples of how this might be
> accomplished in a FreeRadius configuration? Please advise.
create two different ldap.attrmap files. Create two ldap instances each
using
one ldap.attrmap
Use Autz-Type to select between ldap module instances
-- users file --
DEFAULT Realm == "realm1", Autz-Type := ldap1
DEFAULT Realm == "realm2", Autz-Type := ldap2
Check out doc/Autz-Type for more details.
>
> Thanks,
> Pat McShane - ICDC.COM
>
>
--
Kostas Kalevras Network Operations Center
[EMAIL PROTECTED] National Technical University of Athens, Greece
Work Phone: +30 210 7721861
'Go back to the shadow' Gandalf
-
List info/subscribe/unsubscribe? See
http://www.freeradius.org/list/users.html
-
List info/subscribe/unsubscribe? See
http://www.freeradius.org/list/users.html
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
RE: Using LDAP and Realms with v0.81
How do you tie ldap1 and ldap2 to the ldap module.
Do you create
Ldap1.attrmap
Ldap2.attrmap
And then include them both in the radiusd.conf file ?
# Mapping of RADIUS dictionary attributes to LDAP
# directory attributes.
dictionary_mapping = ${raddbdir}/ldap.attrmap
dictionary_mapping = ${raddbdir}/ldap1.attrmap
dictionary_mapping = ${raddbdir}/ldap2.attrmap
Thanks,
Ron.
-Original Message-
From: Kostas Kalevras [mailto:[EMAIL PROTECTED]
Sent: Monday, March 10, 2003 5:07 AM
To: [EMAIL PROTECTED]
Subject: Re: Using LDAP and Realms with v0.81
On Mon, 10 Mar 2003, Patrick McShane wrote:
>
> Hello,
>
> We're testing v0.81 against our existing LDAP DB and the searches
worked
> fine. Now have LDAP authentication working too. We also need to
pull
> different Radius attributes from LDAP depending on Realm name
> ([EMAIL PROTECTED]). Are there any examples of how this might be
> accomplished in a FreeRadius configuration? Please advise.
create two different ldap.attrmap files. Create two ldap instances each
using
one ldap.attrmap
Use Autz-Type to select between ldap module instances
-- users file --
DEFAULT Realm == "realm1", Autz-Type := ldap1
DEFAULT Realm == "realm2", Autz-Type := ldap2
Check out doc/Autz-Type for more details.
>
> Thanks,
> Pat McShane - ICDC.COM
>
>
--
Kostas Kalevras Network Operations Center
[EMAIL PROTECTED] National Technical University of Athens, Greece
Work Phone: +30 210 7721861
'Go back to the shadow' Gandalf
-
List info/subscribe/unsubscribe? See
http://www.freeradius.org/list/users.html
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: Using LDAP and Realms with v0.81
On Mon, 10 Mar 2003, Patrick McShane wrote: > > Hello, > > We're testing v0.81 against our existing LDAP DB and the searches worked > fine. Now have LDAP authentication working too. We also need to pull > different Radius attributes from LDAP depending on Realm name > ([EMAIL PROTECTED]). Are there any examples of how this might be > accomplished in a FreeRadius configuration? Please advise. create two different ldap.attrmap files. Create two ldap instances each using one ldap.attrmap Use Autz-Type to select between ldap module instances -- users file -- DEFAULT Realm == "realm1", Autz-Type := ldap1 DEFAULT Realm == "realm2", Autz-Type := ldap2 Check out doc/Autz-Type for more details. > > Thanks, > Pat McShane - ICDC.COM > > -- Kostas Kalevras Network Operations Center [EMAIL PROTECTED] National Technical University of Athens, Greece Work Phone: +30 210 7721861 'Go back to the shadow' Gandalf - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Using LDAP and Realms with v0.81
Hello, We're testing v0.81 against our existing LDAP DB and the searches worked fine. Now have LDAP authentication working too. We also need to pull different Radius attributes from LDAP depending on Realm name ([EMAIL PROTECTED]). Are there any examples of how this might be accomplished in a FreeRadius configuration? Please advise. Thanks, Pat McShane - ICDC.COM BEGIN:VCARD VERSION:2.1 N:McShane;Patrick;E;Mr. FN:Patrick E McShane NICKNAME:Pat ORG:eJiva Inc.;Technology TITLE:Managing Principal Consultant NOTE;ENCODING=QUOTED-PRINTABLE:=0D=0A=0D=0A TEL;WORK;VOICE:(925) 227-6504 TEL;HOME;VOICE:925-416-0854 TEL;CELL;VOICE:925-437-0190 TEL;PAGER;VOICE:(800) 652-5887 TEL;WORK;FAX:(603) 947-9172 TEL;HOME;FAX:603-947-9172 ADR;WORK;ENCODING=QUOTED-PRINTABLE:;eJiva Technology Center;5934 Gibraltar Drive=0D=0ASuite 200;Pleasanton;CA;9= 4588;United States of America LABEL;WORK;ENCODING=QUOTED-PRINTABLE:eJiva Technology Center=0D=0A5934 Gibraltar Drive=0D=0ASuite 200=0D=0APleasa= nton, CA 94588=0D=0AUnited States of America ADR;HOME;ENCODING=QUOTED-PRINTABLE:;;3610 Andrews Drive=0D=0A;Pleasanton;CA;94588;USA LABEL;HOME;ENCODING=QUOTED-PRINTABLE:3610 Andrews Drive=0D=0A=0D=0APleasanton, CA 94588=0D=0AUSA X-WAB-GENDER:2 URL;HOME:http://www.icdc.com/~pem URL;WORK:http://www.ejiva.com ROLE:Computer Consultant BDAY:19590503 EMAIL;PREF;INTERNET:[EMAIL PROTECTED] REV:20020311T232519Z END:VCARD
