Does anybody have this configuration working (or know for a fact that it will or will not)? I have it working without tls just fine right now.
I am trying to get TLS to work with rlm_ldap, but am still having problems.
Solaris 9 freeradius-0.8.1 openldap-2.0.11 SDK Iplanet Directory Server 5.1
I am wondering if using the openldap libraries when building rlm_ldap is having a problem connecting to an Iplanet Directory Server.
Here is the output from the radiusd when I try to do a radtest
rad_recv: Access-Request packet from host 127.0.0.1:48505, id=70, length=59 User-Name = "test_user" User-Password = "secret" NAS-IP-Address = 255.255.255.255 NAS-Port = 0 modcall: entering group authorize rlm_ldap: - authorize rlm_ldap: performing user authorization for test_user radius_xlat: '(uid=test_user)' radius_xlat: 'ou=people,dc=brown,dc=edu' ldap_get_conn: Got Id: 0 rlm_ldap: attempting LDAP reconnection rlm_ldap: (re)connect to directory.cis-qas.brown.edu:389, authentication 0 rlm_ldap: starting TLS rlm_ldap: ldap_start_tls_s() rlm_ldap: could not start TLS Success rlm_ldap: (re)connection attempt failed rlm_ldap: search failed ldap_release_conn: Release Id: 0 modcall[authorize]: module "ldap" returns fail modcall: group authorize returns fail Finished request 0 Going to the next request --- Walking the entire request list --- Waking up in 5 seconds... rad_recv: Access-Request packet from host 127.0.0.1:48505, id=70, length=59 Dropping packet from client localhost:48505 - ID: 70 due to dead request 0 --- Walking the entire request list --- Waking up in 3 seconds... --- Walking the entire request list --- Cleaning up request 0 ID 70 with timestamp 3e75d141 Nothing to do. Sleeping until we see a request.
- List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html