George Beitis wrote: ...
rlm_ldap: looking for check items in directory... rlm_ldap: looking for reply items in directory...
The LDAP database doesn't contain the "known good" password for the user.
rlm_ldap: user gb85 authorized to use remote access rlm_ldap: ldap_release_conn: Release Id: 0 modcall[authorize]: module "ldap" returns ok for request 0 modcall: leaving group authorize (returns ok) for request 0 rad_check_password: Found Auth-Type System auth: type "System"
This is taken from the "users" file.
Processing the authenticate section of radiusd.conf modcall: entering group authenticate for request 0 modcall[authenticate]: module "unix" returns notfound for request 0
The user isn't in /etc/passwd. The server can't authenticate the user if it doesn't know what the users correct password is. Alan DeKok.