Advice on poptop - freeradius - ldap
Dirk Enrique Seiffert
ds at caribenet.com
Wed Dec 13 22:03:06 CET 2006
Thanks Alan,
my configuration works now. Like always (in radius) just a very few lines
of changes in the default config made it:
> Dirk Enrique Seiffert wrote:
>
>> I set ldap in authorize {} and authenticate {}. In users I added
>>>
>> DEFAULT Auth-Type := LDAP
>> Fall-Through = 1
>
> Why? That's not necessary.
OK, I went back to the default user file.
>
>> When i try to connect from an pptp client my logs show:
>>
>> Tue Dec 12 19:07:31 2006 : Debug: rlm_ldap: Added password
>> {md5}rcBovg3Uck47CSFRhqdtdQ== in check items
>
> 1.1.3 doesn't really support that.
>
>> Tue Dec 12 19:07:31 2006 : Debug: rlm_ldap: looking for check items in
>> directory...
>> Tue Dec 12 19:07:31 2006 : Debug: rlm_ldap: Adding sambaNTPassword as
>> CHAP-Password, value 80B328568267E5A48ACD43F6F67DAD2F & op=21
>
> Huh? It looks like you edited the "ldap.attrmap" file. Why?
I am not using the default radius scheme but a custom one. I don't want to
receive radius attributes from LDAP but check users. These are the changes
I made in ldap.attrmap to fit my LDAP scheme:
checkItem LM-Password sambaLMPassword
checkItem NT-Password sambaNTPassword
Now it works like a charme, thanks again!
--
Dirk Enrique Seiffert - Lintec S.A.
Ed. Torre del Reloj - Of. 401
Plaza de los Coches, Centro
Cartagena - Colombia
http://www.lintecsa.com
--
Este mensaje ha sido analizado por MailScanner
en busca de virus y otros contenidos peligrosos,
y se considera que está limpio.
http://www.lintecsa.com
More information about the Freeradius-Users
mailing list