ENV {} and rlm_ldap.so

Michael Ströder michael at stroeder.com
Fri May 21 23:07:29 CEST 2021


HI!

If I set

ENV {

  LDAPNOINIT = '1'

}

in radiusd.conf will this env var be set before libldap gets loaded via
rlm_ldap.so and initialized?

Background:
Setting LDAPNOINIT to any value will prevent OpenLDAP's libldap to read
any default settings from a system-wide ldap.conf (see man page
ldap.conf(5)). This ensures that only LDAP settings in the FreeRADIUS
config will be used.

Of course I can also set this in the systemd unit. But for those not
using systemd this would even be a nice better default.

Ciao, Michael.


More information about the Freeradius-Users mailing list