Need help Configuring Radius and Ldap

Josip Rodin joy at entuzijast.net
Fri Dec 3 21:58:24 CET 2010


On Fri, Dec 03, 2010 at 02:43:50PM -0600, James Winter wrote:
> On Dec 3, 2010, at 10:52 AM, Phil Mayers wrote:
>> You haven't said what your problem is
>
> Sorry! My server tells me that it ldap did not find a correct matchup,  
> but then returns true.
>
> [ldap] performing search in cn=Users,dc=ds,dc=saintjoe,dc=edu, with  
> filter (samaccountname=jwn6657)
> [ldap] looking for check items in directory...
> [ldap] looking for reply items in directory...
> WARNING: No "known good" password was found in LDAP.  Are you sure that 
> the user is configured correctly?
> [ldap] user jwn6657 authorized to use remote access
> [ldap] ldap_release_conn: Release Id: 0
> ++[ldap] returns ok
>
> It also then continues to search through other forms of authentication, 
> and then it seems to return false to the remote device if any of these 
> are false.

The above log doesn't look like authentication; rather it's authorization.
If you want your LDAP module instance to authenticate, too, call it from
the 'authenticate' section?

-- 
     2. That which causes joy or happiness.



More information about the Freeradius-Users mailing list