openser and AD
Artur Hayne
arturhayne at yahoo.com.br
Mon Aug 21 00:20:08 CEST 2006
HI,
I have a big problem that seams dont have solution. I have a openser server that should autenticated the users from Active Directory trough the FreeRadius. The session of FreeRadius and Active Directory is stablished, but when the user try autenticate, its dont work.
See the debug of Radius:
radius_xlat: 'ou=bli,dc=blo,dc=blu,dc=br'
rlm_ldap: ldap_get_conn: Checking Id: 0
rlm_ldap: ldap_get_conn: Got Id: 0
rlm_ldap: performing search in ou=bli,dc=blo,dc=blu,dc=br, with filter (uid=jab)
rlm_ldap: object not found or got ambiguous search result <----------
rlm_ldap: search failed <----------!
rlm_ldap: ldap_release_conn: Release Id: 0
modcall[authorize]: module "ldap" returns notfound for request 47 <----------
modcall: leaving group authorize (returns ok) for request 47
rad_check_password: Found Auth-Type DIGEST
auth: type "digest"
Processing the authenticate section of radiusd.conf
modcall: entering group authenticate for request 47
rlm_digest: Configuration item "User-Password" or MD5-Password is required for authentication. <---------- essa linha!!!
modcall[authenticate]: module "digest" returns invalid for request 47 <----------
modcall: leaving group authenticate (returns invalid) for request 47
auth: Failed to validate the user. <----------
I see in some tutorials show how authenticate in a domain to use one tool called ntlm_auth, but it seams that only work with the mschap protocol, and the openser uses the digest.
What to do? Any ideia?
Its necessarily to do some configuration in the users or another files?
Thanks..
---------------------------------
Você quer respostas para suas perguntas? Ou você sabe muito e quer compartilhar seu conhecimento? Experimente o Yahoo! Respostas!
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.freeradius.org/pipermail/freeradius-users/attachments/20060820/aeea05b8/attachment.html>
More information about the Freeradius-Users
mailing list