<div dir='ltr'>
Guys,<BR>
<BR>
I configured FreeRadius for Authentication with Active Directory by following the steps as suggested by Alan's deployingradius.com. Everything is working successfully like Samba, Kerberos, ntlm_auth configuration, I can successfully join the domain as an administrator and also user can be authenticated by their credentials successfully. Now I need one suggestion here: Is there any way that administrator be able to read and write the information about user's access privileges by joining the domain. Such as users are allowed/denied for WIFi access, VPN access etc. I don't know whether it is possible or not by confguring anything with Samba/Kerberos/ntlm_auth/FreeRadius or should I need any other program to obtain this goal. <BR>
<BR>
<BR>
I am configuring FreeRadius for the 1st time so, your idea will be greately appreciated.<BR>
<BR>
<BR>
Thanks,<BR>
<DIV>
<HR id=stopSpelling>
Date: Wed, 9 Nov 2011 18:06:16 -0800<BR>From: <a href="/user/SendEmail.jtp?type=node&node=4984367&i=0" target="_top" rel="nofollow" link="external">[hidden email]</a><BR>To: <a href="/user/SendEmail.jtp?type=node&node=4984367&i=1" target="_top" rel="nofollow" link="external">[hidden email]</a><BR>Subject: Re: ldap+freeradius<BR><BR>Hi, <BR><BR>> *Sorry for the confusion I made. I have put the name of LDAP server <BR>> accordingly , not the localhost. Just for privacy I didn't put here.* <BR><BR>okay.... <BR><BR>> Here is the output of radiusd -X command: <BR><BR>and there. bingo. <BR><BR>> libdir = "/usr/local/lib/freeradius-2.1.10" <BR><BR>urgh. why? really...why? <BR><BR>when you did the ./configure stage did you ask for it to go into <BR>this special non-standard directory? <BR><BR>if its there....then you need to ensure that your system knows <BR>its there too - and a default server wont. you will need to edit <BR>the configuration file for your dynamic linker - usually /etc/ld.so.conf <BR>..and then re-run /sbin/ldconfig <BR><BR>..you need to ensure your linker shows that it knows this.... <BR><BR>/sbin/ldconfig -v if you need to check and double-check. if you dont see <BR>the freeradius libraries there at all then you need to check again. <BR><BR>finally...if you dont see the rlm_ldap.so then go back one more step...and check <BR>that the LDAP module was actually built int he first place! <BR><BR>./configure --with-whatever-options | grep WARN <BR><BR>you need to ensure you have LDAP support installed - the ldap development libraries <BR>usually something like openldap-devel in your package manager <BR><BR><BR>the fact that all the other bits work suggests that the other .so files are found..which <BR>points to the lack of ldap development libraries as the main culprit <BR><BR>> /usr/local/etc/raddb/modules/ldap[29]: Failed to link to module 'rlm_ldap': <BR>> file not found <BR>> /usr/local/etc/raddb/sites-enabled/inner-tunnel[237]: Failed to load module <BR>> "ldap". <BR>> /usr/local/etc/raddb/sites-enabled/inner-tunnel[237]: Failed to parse "ldap" <BR>> entry. <BR><BR>yep. the .so dynamic library file cannot be loaded <BR><BR>alan <BR>- <BR>List info/subscribe/unsubscribe? See <A href="http://www.freeradius.org/list/users.html" rel="nofollow" target=_blank link="external">http://www.freeradius.org/list/users.html</A><BR><BR><BR>
<HR color=#cccccc SIZE=1>
<DIV style="FONT: 12px tahoma,geneva,helvetica,arial,sans-serif; COLOR: #444">
<DIV style="FONT-WEIGHT: bold">If you reply to this email, your message will be added to the discussion below:</DIV><A href="http://freeradius.1045715.n5.nabble.com/ldap-freeradius-tp2781398p4979784.html" target=_blank rel="nofollow" link="external">http://freeradius.1045715.n5.nabble.com/ldap-freeradius-tp2781398p4979784.html</A> </DIV>
<DIV style="FONT: 11px/1.5em tahoma,geneva,helvetica,arial,sans-serif; COLOR: #666">To unsubscribe from ldap+freeradius, <A href="" target=_blank rel="nofollow" link="external">click here</A>.<BR><A href="http://freeradius.1045715.n5.nabble.com/template/NamlServlet.jtp?macro=macro_viewer&id=instant_html%21nabble:email.naml&base=nabble.naml.namespaces.BasicNamespace-nabble.view.web.template.NabbleNamespace-nabble.view.web.template.InstantMailNamespace&breadcrumbs=instant+emails%21nabble:email.naml-instant_emails%21nabble:email.naml-send_instant_email%21nabble:email.naml" rel="nofollow" target=_blank link="external">See how NAML generates this email</A> </DIV></DIV> </div>
<br/><hr align="left" width="300" />
View this message in context: <a href="http://freeradius.1045715.n5.nabble.com/ldap-freeradius-tp2781398p4984367.html">RE: ldap+freeradius</a><br/>
Sent from the <a href="http://freeradius.1045715.n5.nabble.com/FreeRadius-User-f2740693.html">FreeRadius - User mailing list archive</a> at Nabble.com.<br/>