User-Password required Authentication problem

Ivan Kalik tnt at kalik.net
Thu Aug 28 13:37:08 CEST 2008


Hm, that should work (password was found):

>rlm_ldap: - authorize
>rlm_ldap: performing user authorization for thales
>WARNING: Deprecated conditional expansion ":-".  See "man unlang" for
>details
>        expand: (uid=%{Stripped-User-Name:-%{User-Name}}) -> (uid=hasan)
>        expand: dc=thales,dc=com -> dc=thales,dc=com
>rlm_ldap: ldap_get_conn: Checking Id: 0
>rlm_ldap: ldap_get_conn: Got Id: 0
>rlm_ldap: attempting LDAP reconnection
>rlm_ldap: (re)connect to 127.0.0.1:389, authentication 0
>rlm_ldap: bind as cn=Administrator,dc=thales,dc=com/thales to 127.0.0.1:389
>rlm_ldap: waiting for bind result ...
>rlm_ldap: Bind was successful
>rlm_ldap: performing search in dc=thales,dc=com, with filter (uid=hasan)
>rlm_ldap: checking if remote access for thales is allowed by uid
>rlm_ldap: Added User-Password = thales in check items
>rlm_ldap: No default NMAS login sequence
>rlm_ldap: looking for check items in directory...
>rlm_ldap: LDAP attribute userPassword as RADIUS attribute User-Password ==
>"thales"
>rlm_ldap: looking for reply items in directory...
>rlm_ldap: user  authorized to use remote access
>rlm_ldap: ldap_release_conn: Release Id: 0
>++[ldap] returns ok

but:

>rlm_ldap: No default NMAS login sequence

eDirectory? It might need additional settings. Have a look at
edir_account_policy_check in ldap module and see if that has been set
properly.

Ivan Kalik
Kalik Informatika ISP




More information about the Freeradius-Users mailing list