<div>Hi,</div>
<div> </div>
<div>Presently my system is configured in such a way that freeradius checks whether user is present in ldap server and then it searches to find the user group in ldap.</div>
<div> </div>
<div>Is there a way I can avoid this? Basically I want to see if a user is present in Ldap server if he is present I will go ahead and authorize him instead of finding his group etc.</div>
<div> </div>
<div>My ldap configuration in radiusd.conf at present is:</div>
<div> </div>
<div>ldap ldap_primary {<br>                server = <a href="http://157.235.205.31">157.235.205.31</a><br>                port = 389<br>                identity = "cn=Administrator,cn=Users,dc=xyt,dc=dyx,dc=com"<br>
                password = temppass</div>
<div>                basedn = cn=Users,dc=xyt,dc=dyx,dc=com<br>                filter = "(sAMAccountName=%{Stripped-User-Name:-%{User-Name}})"<br>                start_tls = no<br>                access_attr = "dialupacces"<br>
                dictionary_mapping = ${raddbdir}/ldap.attrmap<br>                ldap_connections_number = 5<br>                password_attribute = UserPassword<br>                groupname_attribute = cn<br>                groupmembership_filter = "(|(&(objectClass=group)(member=%{Ldap-UserDn}))(&(objectClass=GroupOfUniqueNames)(uniquemember==%{Ldap-UserDn})))"<br>
                groupmembership_attribute = radiusGroupName<br>                timeout = 4<br>                timelimit = 3<br>                net_timeout = 5<br>                access_attr_used_for_allow = no<br>        }</div>

<div> </div>
<div>Iam using radius server 1.1.6 version.</div>
<div> </div>
<div>Thanks in advance</div>
<div>-gnr</div>
<div> </div>
<div> </div>