Re: rlm_ldap: object not found
Thanks Sayantan it works!
Marc Delisle
Sayantan Bhowmick a écrit :
HI,
Change the filter configuration in ldap section of radiusd.conf to
the following:
filter = (cn=%{Stripped-User-Name:-%{User-Name}})
-Sayantan
On Wed, Apr 5, 2006 at 1:53 am, in message
[EMAIL PROTECTED], Marc Delisle
[EMAIL PROTECTED] wrote:
Hi,
thanks to those who answered me for my previous post. It turned out
to
be a certificate problem.
Now, freeradius binds to LDAP on Netware, but does not find any
object:
rlm_ldap: waiting for bind result ...
rlm_ldap: Bind was successful
rlm_ldap: performing search in o=college, with filter (uid=delislma)
rlm_ldap: object not found or got ambiguous search result
rlm_ldap: search failed
Thanks,
Marc Delisle
-
List info/subscribe/unsubscribe? See
http://www.freeradius.org/list/users.html
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
rlm_ldap: object not found
Hi, thanks to those who answered me for my previous post. It turned out to be a certificate problem. Now, freeradius binds to LDAP on Netware, but does not find any object: rlm_ldap: waiting for bind result ... rlm_ldap: Bind was successful rlm_ldap: performing search in o=college, with filter (uid=delislma) rlm_ldap: object not found or got ambiguous search result rlm_ldap: search failed Thanks, Marc Delisle - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
rlm_ldap: could not start TLS
Hi, I'm trying to make freeradius 1.1.0 contact a LDAP server. I configured freeradius --with-edir. The error I get is rlm_ldap: could not start TLS Can't contact LDAP server I followed this document http://www.novell.com/coolsolutions/tip/15922.html except that in my case, the LDAP server is on Netware 6.5 SP5. On this Netware server, LDAP responds correctly over SSL, as tested with Novell's ldapsearch on port 636. In radiusd.conf, in the ldap section, I use tls_cacertfile = /usr/local/freeradius/etc/raddb/certs/rootder.b64 which is the self-signed certificate exported from the Netware's CA object. I can provide other details about my LDAP server object in Netware upon request. Thanks in advance, Marc Delisle - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: rlm_ldap: could not start TLS
George C. Kaplan a écrit : On Apr 1, 2006, at 5:28 AM, Marc Delisle wrote: Hi, I'm trying to make freeradius 1.1.0 contact a LDAP server. I configured freeradius --with-edir. The error I get is rlm_ldap: could not start TLS Can't contact LDAP server I followed this document http://www.novell.com/coolsolutions/tip/15922.html except that in my case, the LDAP server is on Netware 6.5 SP5. On this Netware server, LDAP responds correctly over SSL, as tested with Novell's ldapsearch on port 636. I had a problem similar to this: 'ldapsearch' worked, but Freeradius couldn't make an LDAP connection with TLS. It turns out that my system had two versions of the openssl library, and radiusd was linking to the wrong version. It was kind of confusing, since the rlm_ldap module was linked to the correct library (in /usr/local/lib), but radiusd was linked to the one in /usr/lib, and that's the one that got loaded at run time. I ended up setting --with-openssl-includes and --with-openssl-libraries in the Makefile for the port (I'm using FreeBSD 5.4), and that solved the problem. --George C. Kaplan[EMAIL PROTECTED] Communication Network Services510-643-0496 University of California at Berkeley Thanks George for your answer. I checked: both radiusd and rlm_ldap-1.1.0.so are linked to /usr/lib/libssl.so.0.9.7. I am on Linux. Should this version (openssl 0.9.7e) work? Marc Delisle - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
