FR + AD + Vlans + LDAP help
Jacob Jarick
mem.namefix at gmail.com
Tue Apr 17 09:35:35 CEST 2007
radiusd -X -A output: http://pastebin.ca/444201
radiusd.conf: http://pastebin.ca/444205
After re-reading http://wiki.freeradius.org/index.php/Rlm_ldap
I enabled ldap debug and re-aranged the ldap config like so:
before:
identity = cn=freeradius,ou=admins,ou=radius,dc=tfxschool,dc=internal
password = frpass
after:
identity = "cn=freeradius,ou=admins,ou=radius,dc=tfxschool"
password = frpass
It didnt seem to make any difference unfortunately.
On 4/17/07, Alan DeKok <aland at deployingradius.com> wrote:
> Jacob Jarick wrote:
> > Im currently trying to configure freeradius to authenticate via a
> > win2k3 server, check the users group and then return a confirmation/
> > denial + vlan id for the cisco WAP to process.
> >
> > Questions:
> >
> > 1: Is ldap the only way of retreiving the users group/s
>
> If the users and groups are in LDAP, yes.
>
> > 2 - Can I talk directly to the ADS using the ldap client (or however
> > its done) instead of setting up a linux openldap server.
>
> Yes. Just point the ldap module to active directory.
>
> Alan DeKok.
> --
> http://deployingradius.com - The web site of the book
> http://deployingradius.com/blog/ - The blog
> -
> List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
>
More information about the Freeradius-Users
mailing list