Hi,
Version:
freeradius-1.1.3-1.2.el5.x86_64
I am trying to use
Radius to authenticate via our Linux OpenLDAP Server.
(currently users
authenticate successfully via ssh etc)
I have tried many
different configurations, but all results with:
rlm_ldap: waiting for
bind result ...
Hi,
lovely. HTML email. please dont
looks like your problem is here:
rlm_ldap: login attempt by laurence with password br
rlm_ldap: user DN: cn=Laurence Mayer,ou=people,dc=istraresearch,dc=combr
rlm_ldap: (re)connect to 172.16.16.5:389, authentication 1br
rlm_ldap: could not set
Hi Alan,
Sorry for the html. I
thought I had disabled it.
Yes user laurence can
search ldap successfully.
This search was done
with user laurence
-bash-3.2$ ldapsearch
-x -b 'uid=laurence, ou=People,dc=istraresearch,dc=com'
# extended LDIF
#
# LDAPv3
# base uid=laurence,
I found that this works
now but ONLY for root, does this get us any closer?
ldap {
server = "127.0.0.1"
basedn = "ou=People,dc=istraresearch,dc=com"
filter = "(uid=%{Stripped-User-Name:-%{User-Name}})"
identity = "cn=root,dc=istraresearch,dc=com"
password = xx
start_tls = no
hi,
please stop emailing in HTNL!
anyway, yes - a LOT of people find that they need to use a
privileged account for the LDAP bind - personally, I would
create a new account that has the required priv's to search
the LDAP etc but doesnt have as much power as root.
alan
-
List
As user laurence I am able to search, so the root now binds, however
laurence does not authenticate. I am able to connect via ssh via ldap
server etc.
rad_recv: Access-Request packet from host 172.16.16.55:42419, id=154,
length=60
User-Name = laurence
User-Password =
Hi,
As user laurence I am able to search, so the root now binds, however
laurence does not authenticate. I am able to connect via ssh via ldap
server etc.
and the debug log shows
auth: type LDAP
Processing the authenticate section of radiusd.conf
modcall: entering group LDAP for
rlm_ldap: login attempt by laurence with password
rlm_ldap: user DN: cn=Laurence Mayer,ou=people,dc=istraresearch,dc=com
rlm_ldap: (re)connect to 127.0.0.1:389, authentication 1
rlm_ldap: could not set LDAP_OPT_X_TLS_REQUIRE_CERT option to allow
rlm_ldap: bind as cn=Laurence
Freeradius version?
Ivan Kalik
Kalik Informatika ISP
Dana 31/8/2008, Umar [EMAIL PROTECTED] piše:
Dear User!
I have Freeradius running on FreeBSD. How i can kill or get a status of
connected user?.
I am trying radclient but its not working for me.
echo User-Name = umar | radclient -x
Umar wrote:
I have Freeradius running on FreeBSD. How i can kill or get a status of
connected user?.
Use radwho to see who's online. Use radclient to send a CoA
packet to disconnect a user, if your NAS supports it.
Alan DeKok.
-
List info/subscribe/unsubscribe? See
Alexandre J. Correa - Onda Internet wrote:
how i can setup freeradius to disconnect previous session of user that
has Simultaneous-Use = 1 ?!
If your NAS supports it, use radclient to disconnect a user. You
can run radclient as an executable program from within the configuration
files.
Pierre-henri Baraffe wrote:
I have a mistake with my freeradius. On server with 1.1.7 the command :
radzap -u username -P port-nas 127.0.0.1 secret work with no problem
On a new server with FR 2.0.5, with the same command i have this error
radclient:: failed to get value
Hmm...
12 matches
Mail list logo