Conditional expression ":-" deprecated?

Alan Buxey A.L.M.Buxey at
Sun Jan 24 22:26:45 CET 2010


> It's the same reason I keep asking about this error:
> [ldap] looking for reply items in directory...
> WARNING: No "known good" password was found in LDAP.  Are you sure 
> that the user is configured correctly?
> [ldap] user rsteeves authorized to use remote access

<shrug> - LDAP was unable to find a useable password for the user
in LDAP - for the authentication - but as this is the authorization
(authz) stage then not to worry?

> Thx, will do. One question about that file. Example:
>          #  seconds LDAP server has to process the query (server-side
>          #  time limit). default: 20
>          #
>          #  LDAP_OPT_TIMELIMIT is set to this value.
>          timelimit = 3
> Why does it say the default is 20, and yet actually have the default 
> value set to 3?

sshhh. its better you dont know.... ;-)

seriously, its probably badly worded.  if you DONT define it, then the default
value is 20.  however, its defined in the config ..but that isnt the 'default'
value..the default value is hardcoded...what that '3' is is the current
supplied configuration value.  in almost all places I know, '20' would be WAYYYYY
too long a wait.


More information about the Freeradius-Users mailing list