LDAP and attributes from user file.
Ivan Kalik
tnt at kalik.net
Mon Jul 27 13:40:35 CEST 2009
> The issue I have now is that the attributes I set in the user file:
>
> DEFAULT Huntgroup-Name == WirelessGear, Ldap-Group ==
> "cn=WirelessAllowed,o=integrity"
> Tunnel-Type = VLAN,
> Tunnel-Medium-Type = IEEE-802,
> Tunnel-Private-Group-Id = 10
>
> The attributes are not included in the Access-Accept when using radtest or
> a XP workstation using the Novell 802.1x client.
> Below is the debug:
>
> rad_recv: Access-Request packet from host 10.1.0.24 port 32888, id=30,
> length=59
> User-Name = "testuser"
> User-Password = "password"
> NAS-IP-Address = 10.1.0.24
> NAS-Port = 0
...
> ++[files] returns noop
...
>
> However when I use an XP client and no Novell client or ntradping I see
> the attributes and I am assigned the correct VLAN
> Here is the debug below:
>
>
> rad_recv: Access-Request packet from host 10.1.0.5 port 1541, id=6,
> length=48
> User-Name = "testuser"
> CHAP-Password = 0xa734db980a0367669cce38acbf8badf1bc
...
> [files] users: Matched entry DEFAULT at line 4
> ++[files] returns ok
...
It looks like there is no huntgroup match in the first request.
Ivan Kalik
Kalik Informatika ISP
More information about the Freeradius-Users
mailing list