Use Autz-Type instead of Auth-Type
and set Autz-Type := aldap1 in the users file (in check items)
2005/12/28, Gerald Richter [EMAIL PROTECTED]:
Hi,
I want to use more than one ldap server to authenticate users. I have setup
a users file that sets the Autz-Type so one of two ldap server are
Hi,
Use Autz-Type instead of Auth-Type
and set Autz-Type := aldap1 in the users file (in check items)
That's what I already do and authorization works correctly and accesses
ldap1 or ldap2 as it should, but when it comes to authentication, Auth-Type
is set to LDAP by the authorization
Hi,
You can also set Auth-Type and then add an entry in
authentication section like you did in authorize.
Yes, I know, but as I wrote in my first message, my problem comes with CHAP,
because if you set the Auth-Type := aldap1, then CHAP will not work anymore,
because the chap modules see
Hi,
You can also set Auth-Type and then add an entry in authentication
section like you did in authorize.
it could look like this :
in users files:
user ...,Autz-Type := aldap1, Auth-Type := aldap1
and in radiusd.conf:
Authorize{
...
Autz-Type aldap1 {
...
}
...
}
Authenticate {
Gerald Richter [EMAIL PROTECTED] wrote:
That's what I already do and authorization works correctly and accesses
ldap1 or ldap2 as it should, but when it comes to authentication, Auth-Type
is set to LDAP by the authorization phase and it didn't know about
different ldap servers anymore
OK,
Hi,
OK, enough is enough. This auto-set Auth-Type in LDAP is
just broken. I'll fix it before 1.1.0 to do the following:
- add a config option saying set_auth_type = yes/no
- the default will be yes for backwareds compatibility
- the yes case will also be smarter about multiple
6 matches
Mail list logo