Multiple forests

John elmer_radius at yahoo.com.cn
Tue Nov 17 07:02:22 CET 2009


Thank you. I will give it a try.


--- 09年11月16日,周一, Peter Lambrechtsen <plambrechtsen at gmail.com> 写道:


发件人: Peter Lambrechtsen <plambrechtsen at gmail.com>
主题: Re: Multiple forests
收件人: "FreeRadius users mailing list" <freeradius-users at lists.freeradius.org>
日期: 2009年11月16日,周一,下午5:50


You will need to setup two (or more) LDAP directory configs in the modules/ldap config.

AD's LDAP interface isn't able to query inter-domain.  So you need to setup a LDAP connection per unique domain.

http://wiki.freeradius.org/Rlm_ldap


On Mon, Nov 16, 2009 at 9:42 PM, John <elmer_radius at yahoo.com.cn> wrote:






Hi,
We are using freeRADIUS-1.1.6 talk to active-directory (multiple DOMAINs: "A.com" and "sub.A.com"). We use rlm_ldap module Global catalog port to get attributes from ADs. It works fine.
 
Now a forest(e.g.  "B.com", "sub.B.com" ...) that is trust with domain "A.com". I can not get attributes from forest "B.com".  
How to get attribute from forest "B.com" ?
Any commnet is welcome.
 
Thanks.
John


好玩贺卡等你发,邮箱贺卡全新上线!
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html


-----下面为附件内容-----


-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html


      ___________________________________________________________ 
  好玩贺卡等你发,邮箱贺卡全新上线! 
http://card.mail.cn.yahoo.com/
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.freeradius.org/pipermail/freeradius-users/attachments/20091117/de370439/attachment.html>


More information about the Freeradius-Users mailing list