rlm_ldap: Attribute "User-Password" is required forauthentication

Alan DeKok aland at ox.org
Fri Jul 22 18:50:08 CEST 2005

"Kris Benson" <kbenson at sd57.bc.ca> wrote:
> Hi Alan, Melvin,
> LDAP does provide some authentication -- through the 'BIND' statement. 

  Yes, I know that.  But it's a hack, and it only works if the request
contains a User-Password.

  Since many requests don't contain a User-Password, people who
configure LDAP for authentication get confused when LDAP
"authentication" fails for MSCHAP.

  The solution is to NOT use LDAP as an authentication server.

  Alan DeKok.

More information about the Freeradius-Users mailing list