-avpair = shell:priv-lvl=15
But user is getting % Authorization failed.
--
View this message in context:
http://freeradius.1045715.n5.nabble.com/LDAP-Not-working-properly-tp4593327p4598408.html
Sent from the FreeRadius - User mailing list archive at Nabble.com.
-
List info/subscribe/unsubscribe? See
Hi,
radiusd -X
are you sure that your config isnt eg stripping cisco-avpair
before the RADIUS accept packet is being sent to the device?
alan
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Access-Accept of id 197 to 172.17.3.210 port 1645
Finished request 0.
Going to the next request
Waking up in 4.9 seconds.
Cleaning up request 0 ID 197 with timestamp +27
Ready to process requests.
--
View this message in context:
http://freeradius.1045715.n5.nabble.com/LDAP-Not-working-properly
vijaysingh wrote:
I have started Radius with radiusd -X
After entering user name and password in cisco device it is giving %
Authorization failed. immediatley.
The logs are as following. I don't know is it stripping cisco-avpair before
the RADIUS accept packet are sent to device. How to
Got it, Actually I was givining wrong parameter in /etc/raddb/modules/ldap
Changed the parameter as following, now it is working fine.
groupmembership_attribute = memberOf
Thanks for your support.
Vijay.
--
View this message in context:
http://freeradius.1045715.n5.nabble.com/LDAP-Not-working
Hi,
I have changed from %Ldap-UserDN to %{Ldap-UserDN} but still not able to
login from my cisco switch.
Sending Access-Accept of id 184 to 172.17.3.210 port 1645
Finished request 0.
Going to the next request
Waking up in 4.9 seconds.
Cleaning up request 0 ID 184 with timestamp +14
Ready
.nabble.com/LDAP-Not-working-properly-tp4593327p4593327.html
Sent from the FreeRadius - User mailing list archive at Nabble.com.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
(|((objectClass=group)(member=/var/log/radiusdap-UserDn}))((objectClass=top)(uniquemember=)))
This is obviously wrong you have a typo somewhere. Probably you have:
%Ldap-UserDN
You should have:
%{Ldap-UserDN}
--
Sent from my phone. Please excuse brevity and typos.
-
List
with timestamp +14
Ready to process requests.
--
View this message in context:
http://freeradius.1045715.n5.nabble.com/LDAP-Not-working-properly-tp4593327p4593489.html
Sent from the FreeRadius - User mailing list archive at Nabble.com.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list
9 matches
Mail list logo