Logging the return code from the ldap authentication to SQL.

Augusto G. Andreollo guto at ccuec.unicamp.br
Tue Mar 17 16:26:00 CET 2009


On Tue, 2009-03-17 at 10:11 +0100, Alan DeKok wrote:

> > My problem now is that it only returns correctly when the module returns
> > OK. If the LDAP returns anything else (fail, rejected, notfound), it
> > just completely skips over the IFs block and goes straight to Post-Auth.
> > Is that expected?
> 
>   Yes.
> 
>   In normal processing, failure means STOP.  Don't keep bugging other
> modules with a request that failed.

Hmm.. thing is, the post-auth sql query is already being processed, to
log the Access-Reject.. Is there any other way I could extract the
rejection reason from the LDAP module, to add to this query?

Thanks
-- 
Augusto G. Andreollo
CCUEC/DCNET/SREDE
Universidade Estadual de Campinas - UNICAMP
+55 19 3521-2276
    --  "Wit beyond measure is men's greatest treasure."
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/x-pkcs7-signature
Size: 6701 bytes
Desc: not available
URL: <http://lists.freeradius.org/pipermail/freeradius-users/attachments/20090317/e40b7c86/attachment.bin>


More information about the Freeradius-Users mailing list