>
> I've checked the sources - rlm_ldap NEVER sets Ldap-Group attribute. It is
> used for comparison only :(
>
>
> Only option seems to be testing for Ldap-Group != "".
>
> Ivan Kalik
It will not work. Quote from rlm_ldap.c:
static int ldap_groupcmp(void *instance, REQUEST *req,
>
> Hm, so it is there but not on the control list. I don't know what list
> is it on then.
>
> Ivan Kalik
> Kalik Informatika ISP
>
I've checked the sources - rlm_ldap NEVER sets Ldap-Group attribute. It is used
for comparison only :(
---
Maxim
-
List info/subscribe/unsubscribe? See http://
> OK. Let's backtrack. Something is wrong here.
> Try unlang: if (!control:Ldap-Group) { ...
>
>
> I have done this with Auth-Type before and it works. But you say that
> this is active regardles of user being in ldap group or not. Try this:
>
> ldap
>
> if(!control:Ldap-Group) {
> }
> update
19.01.09, 18:13, t...@kalik.net:
> >> >> > 3. Also i need a reject rule for those users, who was authenticated
> >> >> > by LDAP and do not belong to any ldap-group. I've tried Ldap-Group
> >> >> > !*, but this attribute always exists for every user :(
> >> Try unlang: if (!control:Ldap-Group) {
19.01.09, 16:52, t...@kalik.net:
> >> > 3. Also i need a reject rule for those users, who was authenticated by
> >> > LDAP and do not belong to any ldap-group. I've tried Ldap-Group !*, but
> >> > this attribute always exists for every user :(
> Try unlang: if (!control:Ldap-Group) { ...
> Ivan
19.01.09, 12:30, "Alan DeKok" :
> Куприянов Максим wrote:
> > I'm using FreeRadius 2.1.3 with LDAP (eDirectory) and plain-text (users
> > file) backends and I don't know how to solve a couple of problems :(
> How do you tell the users apart?
> > 1. I
> Куприянов Максим wrote:
> > I'm using FreeRadius 2.1.3 with LDAP (eDirectory) and plain-text (users
> > file) backends and I don't know how to solve a couple of problems :(
>
> How do you tell the users apart?
>
> > 1. Is possible to mix users with
Hello!
I'm using FreeRadius 2.1.3 with LDAP (eDirectory) and plain-text (users file)
backends and I don't know how to solve a couple of problems :(
1. Is possible to mix users with same names, but different passwords from LDAP
and from users file? There are some old time users in my org, who don
8 matches
Mail list logo