Alan DeKok aland at deployingradius.com
Thu May 5 18:13:12 CEST 2016

On May 5, 2016, at 12:02 PM, WINANT, KEVIN <KW517G at att.com> wrote:
> HI Alan, Thanks for the info and this is a file I was looking at.
> In that file where I would expect to see the LDAP server name:  "server ="
> It shows:   server = "ldap.your.domain"  

  So it's an example file.  It's not the local configuration.

> Assume this is default before specifying an actual LDAP server hostname

  It should.  Once you find the correct file, it will have the LDAP server hostname.

 This shouldn't be hard.  Look in /etc/raddb/mods-enabled.  Find the files which contain "ldap".  Read them.
> The start tls=no  indicates to me that LDAPS is not being used (port 636) and would instead be using unsecure LDAP via port 389..  Is this correct assumption?

  Since you're not looking at the correct file, no.

> Still puzzled by the LDAP file having no SPECIFIC LDAP server hostname defined for "server="

  You're not looking at the correct file.

  This isn't rocket science.  If there's no LDAP server hostname, you're not looking at the correct file.  The server doesn't magically know to talk to your LDAP hostname.

> Have attached the LDAP file, not sure if will make it through

  No.  And please don't attach the default configuration files.  We know what they look like.  They're distributed with the server.

  Alan DeKok.

More information about the Freeradius-Users mailing list