After fighting with an upgrade from freeradius-1.0.3 to 2.1.1, both do a
simple LDAP authorize/PAP authenticate (no tls, no eap, no chap, no
inner-tunnel, nothing else), I've stumbled on what seems to fix my
problem, and am curious if my fix makes sense, and will continue to be
supported. I'm n
I had a look at the code and from what I see password value should be
added to a User-Password attribute. Can you post the whole debug with
auto_header disabled in ldap (and enabled in pap). You haven't mapped
userPassword to Cleartext-Password by any chance?
Ivan Kalik
Kalik Informatika ISP
Dan
Tim Palmer wrote:
> With 2.1.1, I had no trouble getting rlm_ldap to connect to my OpenLDAP
> server, and after putting in a Cleartext-Passwrod entry in
> ldap.attrsmap,
That's the issue. DON'T do that.
> rlm_ldap would authorize fine, and everything seemed ok,
> except I couldn't get pap to u
Full disclosure - I did try an install from ports, then removed the port
and rerun ldconfig. I did not recompile/install freeradius after the
port excercise.
===
Why yes, I did map Cleartext-Password, since the debug error ( and
various list postings) seemed clear on that:
ldap.attrmap:
c
>Why yes, I did map Cleartext-Password, since the debug error ( and
>various list postings) seemed clear on that:
>
>ldap.attrmap:
>checkItem Cleartext-Password userPassword
OK. Debug will moan about using User-Password if you are using clear text
password. It will moan, replac
[EMAIL PROTECTED] wrote:
Why yes, I did map Cleartext-Password, since the debug error ( and
various list postings) seemed clear on that:
ldap.attrmap:
checkItem Cleartext-Password userPassword
OK. Debug will moan about using User-Password if you are using clear text
pa
[EMAIL PROTECTED] wrote:
No amount of changing settings in modules/pap and other config files
would help. I finally noticed in the rlm_ldap debug output "auto_headers
= no".
So, I set auto_headers = yes in modules/ldap, and login passes. Remove
it, and login fails.
Are you saying that if
>No amount of changing settings in modules/pap and other config files
>would help. I finally noticed in the rlm_ldap debug output "auto_headers
>= no".
>
>So, I set auto_headers = yes in modules/ldap, and login passes. Remove
>it, and login fails.
>
Are you saying that if you enable auto_header in
Le mardi 11 novembre 2008 20:48, Tim Palmer a écrit :
> [pap] Found existing Auth-Type, not changing it.
> ++[pap] returns noop
> Found Auth-Type = PAP
> +- entering group PAP {...}
> [pap] login attempt with password "testing"
> [pap] Using clear text password "{crypt}$1$Moq9XEC8$PRA5/NGFUrskxI52N
Le mercredi 12 novembre 2008 04:21, lolo a écrit :
>
> As said Alan Devok :
!!! Alan Dekok !!!
:)
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Tim Palmer wrote:
> Full disclosure - I did try an install from ports, then removed the port
> and rerun ldconfig. I did not recompile/install freeradius after the
> port excercise.
> ===
> Why yes, I did map Cleartext-Password, since the debug error ( and
> various list postings) seemed clear
Alan DeKok wrote:
Tim Palmer wrote:
Full disclosure - I did try an install from ports, then removed the port
and rerun ldconfig. I did not recompile/install freeradius after the
port excercise.
===
Why yes, I did map Cleartext-Password, since the debug error ( and
various list postings) s
12 matches
Mail list logo
