I have read all the man pages and /docs and am having a difficult time understanding the authorization. I keep wanting to write "if...elseif...else" stuff but I'm pretty sure that doesn't apply to FreeRADIUS config files.
In the radiusd.conf there is documentation on how to use checkval to compare
Alhagie,
Hey, i made it work now.. I can now authenticate to my MSAD... Tnx for
the hints.: My radius.conf looks like this now... I can now even make
my CISCO 1700 dial-in server to authenticate to my MSAD.
ldap {
server = "192.168.1.1"
#identity = "cn=admin,o=My
In addition to Dusty's comments:
Michael Calizo <[EMAIL PROTECTED]> wrote:
> rlm_ldap: ldap_search() failed: Operations error
http://bugs.freeradius.org/show_bug.cgi?id=183
You're running into two issues:
- the OpenLDAP client libraries don't use the
authentication credentials they're
You want to allow any client that matches what is in the clients.conf file
in, correct?
The secret in your clients.conf file is used to encrypt and sign packets
between the clients and the server. It is not used for authentication.
Have you tried adding the IPs to some type of backend?
For
rlm_ldap: login attempt by "mike" with password "mike123"
radius_xlat: '(SamAccountName=mike)'
radius_xlat: 'CN=Person,DC=chikka,DC=ph'
rlm_ldap: ldap_get_conn: Checking Id: 0
rlm_ldap: ldap_get_conn: Got Id: 0
rlm_ldap: attempting LDAP reconnection
rlm_ldap: (re)connect to 192.168.1.1:389, auth
Hi Alhagie,
Below is my ldap search result which i found it that it can connect to
MSAD. But when i configure my radiusd.conf Ldap part as shown
below.
ldap {
server = "192.168.1.1"
#identity = "cn=admin,o=My Org,c=UA"
# password = mypass
Mojo Jojo wrote>
Mojo Jojo wrote:
Only thing I am stuck on here is that my CHAP request are failing
with this message:
Sat Dec 17 22:31:06 2005 : Auth: Login incorrect (rlm_chap: Clear
text password not available)
seems pretty clear. You must have clear text passwords in the
Mojo Jojo wrote:
Only thing I am stuck on here is that my CHAP request are failing with
this message:
Sat Dec 17 22:31:06 2005 : Auth: Login incorrect (rlm_chap: Clear text
password not available)
seems pretty clear. You must have clear text passwords in the users file
or sql f
Lewis Bergman wrote:
Mojo Jojo wrote:
At this time, the request are authed regardless of the username or
password but they are authed regardless of the client or secret.
Not possible.
You are correct..
If you look at the way the secret is used you'll find that your use of
auth-typ
Mojo Jojo wrote:
Only thing I am stuck on here is that my CHAP request are failing with
this message:
Sat Dec 17 22:31:06 2005 : Auth: Login incorrect (rlm_chap: Clear text
password not available)
seems pretty clear. You must have clear text passwords in the users file
or sql for c
Mojo Jojo wrote:
At this time, the request are authed regardless of the username or
password but they are authed regardless of the client or secret.
Not possible.
You are correct..
Let me re-phrase after doing a little more testing...
At this time I have an "AuthAll" setup working and it
11 matches
Mail list logo
