Hi Alan and all,
Thanks Alan for you earlier reply.
I have a problem for Authenticating Radius server with Openldap backend. In
the ldap.attrmap I added the line
*checkitem User-Password userPassword *and also under modules in ldap
module I have set_auth_type=yes for binding LDAP for authentic
Syed Anwarul Hasan wrote:
> ... Also in the Sites-enabled dir under default file, I have
> added in the Authorize section I added,
> *update control {
> Auth-Type :=ldap
Why? All of the documentation and configuration files say DO NOT DO
SET AUTH-TYPE.
...
> rlm_ldap: Attribute "User-Passwor
Hi Alan,
Since I am using a Plain password in the LDAP database, hence I tried to do
LDAP Authentication with Auth-type set to LDAP.
Even I tried with only uncommenting ldap in Authorize and Authenticate
section of default file in sites-enabled.Still, I am having the Problem with
*no Authenticate m
Well, ldap found the user but didn't find the password. Post the debug
from the request.
Ivan Kalik
Kalik Informatika ISP
Dana 28/8/2008, "Syed Anwarul Hasan" <[EMAIL PROTECTED]>
piše:
>Hi Alan,
>Since I am using a Plain password in the LDAP database, hence I tried to do
>LDAP Authentication wi
Hi Ivan, this is the request .Sorry Ivan, I didn't fix the name resolution
for locahost. This Problem is due to this.
I will fix the name resolution.
SYED
# radtest hasan thales localhost 1 testing123
Sending Access-Request of id 241 to 127.0.0.1 port 1812
User-Name = "hasan"
User
Could be. You haven't posted the debug of request processing, so we
can't see what's going on.
Ivan Kalik
Kalik Informatika ISP
Dana 28/8/2008, "Syed Anwarul Hasan" <[EMAIL PROTECTED]>
piše:
>Hi Ivan, this is the request .Sorry Ivan, I didn't fix the name resolution
>for locahost. This Problem
*yes Ivan.
Debug o:p radiusd -X*
Listening on authentication address * port 1812
Listening on accounting address * port 1813
Ready to process requests.
rad_recv: Access-Request packet from host 127.0.0.1 port 1031, id=171,
length=57
User-Name = "hasan"
User-Password = "thales"
Hm, that should work (password was found):
>rlm_ldap: - authorize
>rlm_ldap: performing user authorization for thales
>WARNING: Deprecated conditional expansion ":-". See "man unlang" for
>details
>expand: (uid=%{Stripped-User-Name:-%{User-Name}}) -> (uid=hasan)
>expand: dc=thales
Ivan , I have build the free radius on SLES 10 SP2 without e-directory
option. And also in ldap module, it is uncommented by default with value
e-dir_account_policy_check=no.So by default the Novell e-dir check is
disabled and further in the module I have uncommented the set_auth_type=yes
which is
Well, I would follow documentation and recompile with that option. It's
hard to imagine facts will change without it.
Again Auth-Type will be set if password is located in ldap, so that
won't work either.
Ivan Kalik
Kalik Informatika ISP
Dana 28/8/2008, "Syed Anwarul Hasan" <[EMAIL PROTECTED]>
10 matches
Mail list logo