<table cellspacing="0" cellpadding="0" border="0" ><tr><td valign="top" style="font: inherit;"><BR><BR>--- <B>10年9月2日,周四, John <I><elmer_radius@yahoo.com.cn></I></B> 写道:<BR>
<BLOCKQUOTE style="PADDING-LEFT: 5px; MARGIN-LEFT: 5px; BORDER-LEFT: rgb(16,16,255) 2px solid"><BR>发件人: John <elmer_radius@yahoo.com.cn><BR>主题: <BR>收件人: freeradius-users@lists.freeradius.org<BR>日期: 2010年9月2日,周四,下午12:45<BR><BR>
<DIV id=yiv1959261412>
<TABLE cellSpacing=0 cellPadding=0 border=0>
<TBODY>
<TR>
<TD vAlign=top>
<DIV>Hi all, We upgrade freeradius from 1.1.6 to 2.1.18 recently. Looks 2.1.8 will reply a Access-Reject when [ldap] return fail, but 1.1.6 is just keep silence. Is there a way to let 2.1.8 reply nothing in the case?</DIV>
<DIV> </DIV>
<DIV> </DIV>
<DIV>Listening on authentication address * port 1812<BR>Listening on proxy address * port 1814<BR>Ready to process requests.<BR>rad_recv: Access-Request packet from host 10.155.20.85 port 32770, id=182, length=130<BR> Service-Type = Authorize-Only<BR> NAS-Port-Type = Wireless-802.11<BR> User-Name = "test2008"<BR> MS-CHAP-Challenge = 0x766bb4f5ae93e28b4630b8fbc674e137<BR> MS-CHAP2-Response = 0x3700e851effcf3aa3f7731204ca90dcbd98300000000000000006c9248ca4d87e72d0b4a91dbd2672bb1f8f5b725187953ff<BR> NAS-IP-Address = 10.155.20.85<BR>+- entering group authorize {...}<BR>++[chap] returns noop<BR>[mschap] Found MS-CHAP attributes. Setting 'Auth-Type = mschap'<BR>++[mschap] returns ok<BR>[eap] No
EAP-Message, not doing EAP<BR>++[eap] returns noop<BR>[ldap] performing user authorization for test2008<BR>[ldap] expand: (sAMAccountName=%{mschap:User-Name}) -> (sAMAccountName=test2008)<BR>[ldap] expand: OU=Domain Controllers,dc=aero-hz,dc=cn -> OU=Domain Controllers,dc=aerohive-hz,dc=cn<BR> [ldap] ldap_get_conn: Checking Id: 0<BR> [ldap] ldap_get_conn: Got Id: 0<BR> [ldap] attempting LDAP reconnection<BR> [ldap] (re)connect to 10.155.3.2:389, authentication 0<BR> [ldap] bind as <A href="http://cn.mc157.mail.yahoo.com/mc/compose?to=hhe@aero-hz.cn/w2006njh" target=_blank rel=nofollow ymailto="mailto:hhe@aero-hz.cn/w2006njh">hhe@aero-hz.cn/w200h</A> to 10.155.3.2:389<BR> [ldap] <A href="http://cn.mc157.mail.yahoo.com/mc/compose?to=hhe@aero-hz.cn" target=_blank rel=nofollow ymailto="mailto:hhe@aero-hz.cn">hhe@aero-hz.cn</A> bind to 10.155.3.2:389 failed: Can't contact LDAP server<BR> [ldap]
(re)connection attempt failed<BR>[ldap] search failed<BR> [ldap] ldap_release_conn: Release Id: 0<BR>++[ldap] returns fail<BR>Sending Access-Reject of id 182 to 10.155.20.85 port 32770<BR>Finished request 0.<BR>Going to the next request<BR>Waking up in 4.9 seconds.<BR>Cleaning up request 0 ID 182 with timestamp +10<BR>Ready to process requests.<BR></DIV></TD></TR></TBODY></TABLE><BR> </DIV></BLOCKQUOTE></td></tr></table><br>