redundant ldap configuration
Arran Cudbard-Bell
a.cudbardb at freeradius.org
Sat Dec 14 11:51:42 CET 2013
On 14 Dec 2013, at 10:33, Polish <pavel.polacek at ujep.cz> wrote:
> Hello Olivier,
>
> On Fri, 13 Dec 2013, Olivier Beytrison wrote:
>
>> On 13.12.2013 17:57, Polish wrote:
>>> Hello,
>>>
>>> entire log is in attachment (gzipped because of size).
>>
>> # Skipping instantiation of ldap1
>>
>> Actually that's weird.
>> And it should open connections to the ldap servers on startup.
>>
>> What's also weird is that you don't have a pool {} section in your configuration ...
>>
>> Did you just move a 2.X configuration to 3.0, or did you build it from a vanilla 3.0 configuration ? (you can't just move 2.x conf to 3.x. things changed, other moved, some disapeared, and many new items were added)
>
> I understand. It's vanilla configuration, but I try to add similar
> functions which I have on 2.2 branch (FR2.2 is template for me).
Well that won't work, 3.0 changed substantially. Only the logic is really portable (unlang is pretty much unchanged).
> I looking for module ldap
> documentation in version 3.0.
>
> Now I looking for replacement of password_attribute option for example.
> I try to test FR3 against 389 ldap server. This option in FR3 example configuration is missing.
That functionality was removed, because it was duplicative on the PAP module.
The PAP module will examine the header on control:Password-With-Header attributes, normalise them
and then copy them to the hash specific attribute. e.g. control:NT-Password.
In order to get similar functionality to 2.x.x you just need to list Password-With-Header in the
update section.
https://github.com/FreeRADIUS/freeradius-server/blob/master/raddb/mods-available/ldap#L55
-Arran
Arran Cudbard-Bell <a.cudbardb at freeradius.org>
FreeRADIUS Development Team
FD31 3077 42EC 7FCD 32FE 5EE2 56CF 27F9 30A8 CAA2
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 881 bytes
Desc: Message signed with OpenPGP using GPGMail
URL: <http://lists.freeradius.org/pipermail/freeradius-users/attachments/20131214/dc145fba/attachment.pgp>
More information about the Freeradius-Users
mailing list