rlm_yubikey OTP + LDAP

[cbandara]

Hi I am trying to implement a freeradius solution for a firewall. i cant find documentation on how to configure yubikeys OTP with ldap. i am getting some errors with my config.
trying to see if there is good documentation out there
Thanks
rlm_ldap (ldap): Released connection (6)
(0) files: users: Matched entry DEFAULT at line 13
(0)     [files] = ok
(0) yubikey:   &request:Yubikey-OTP := <<< secret >>>
(0) yubikey:   &request:User-Password := <<< secret >>>
(0)     [yubikey] = ok
(0)     if (ok) {
(0)     if (ok)  -> TRUE
(0)     if (ok)  {
(0)       update control {
(0)         Auth-Type := yubikey
(0)       } # update control = noop
(0)     } # if (ok)  = noop
(0)   } # authorize = ok
(0) Found Auth-Type = yubikey
(0) Found Auth-Type = yubikey
(0) ERROR: Warning:  Found 2 auth-types on request for user 'chula'
(0) # Executing group from file /etc/raddb/sites-enabled/default
(0)   Auth-Type yubikey {
(0)     [yubikey] = noop
(0)     update request {
(0)       User-Password := Yubikey-Public-ID -> 'cccccckirnie'
(0)     } # update request = noop
rlm_ldap (ldap): Reserved connection (5)
(0) ldap: Login attempt by "chula"
(0) ldap: Using user DN from request "cn=chula,ou=users,dc=xxxx,dc=yyyy"
(0) ldap: Waiting for bind result...
(0) ldap: ERROR: Bind credentials incorrect: Invalid credentials
rlm_ldap (ldap): Released connection (5)
(0)     [ldap] = reject
(0)   } # Auth-Type yubikey = reject
(0) Failed to authenticate the user
(0) Using Post-Auth-Type Reject
(0) Post-Auth-Type sub-section not found.  Ignoring.
(0) # Executing group from file /etc/raddb/sites-enabled/default

Sent with [ProtonMail](https://protonmail.com) Secure Email.