Hi Kris, Thanks for your reply. I will be very grateful if you could post your config entries to me. Many tks. cheers, melvin ----- Original Message ----- From: "Kris Benson" <kbenson@sd57.bc.ca> To: "FreeRadius users mailing list" <freeradius-users@lists.freeradius.org> Sent: Friday, July 22, 2005 11:24 PM Subject: Re: rlm_ldap: Attribute "User-Password" is required forauthentication
"melvin" <melvin.wong@muvee.com> wrote:
Sorry as I am not an expert in radius but if I do not set "Auth-Type = LDAP" how do I ensure that the authentication goes thru ldap.
LDAP is an authentication server? That's news to me.
All the users have their passwords stored in ldap and therefore I hope to utilise the ldap to do the authentication.
LDAP is a database. Let FreeRADIUS read the passwords from LDAP, and have FreeRADIUS do the authentication.
FreeRADIUS is an authentication server. LDAP is not.
Hi Alan, Melvin,
LDAP does provide some authentication -- through the 'BIND' statement. Incidentally, this is how the FreeRadius rlm_ldap module chooses to authenticate against an LDAP entry... it attempts to 'bind' to it, passing the username and password to LDAP.
I have successfully integrated FreeRadius & LDAP -- I can get you my config entries if you would like. It worked with OpenLDAP practically out-of-the-box.
-kb -- Kris Benson, CCP, I.S.P. Technical Analyst, District Projects School District #57 (Prince George)
- List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html