authorize with files + ldap problem
Wipat Srutiprom
wipat.s at psu.ac.th
Sat Jul 29 07:32:24 CEST 2006
On freeradius-1.0.4-1.FC4.1 come with fedora core 4.
I want to authorize either UNIX user (/etc/passwd/) or LDAP user.
/etc/raddb/users file is:
DEFAULT Auth-Type = System
Fall-Through = 1
I success with both LDAP user and UNIX user with /etc/raddb/radiusd.conf
is: authorize {
ldap
files
}
Then I change the order in /etc/raddb/radiusd.conf to:
authorize {
files
ldap
}
only UNIX user is be accept, but LDAP user is be reject.
My sample radtest:
radtest myuser mypassword localhost 0 testing123
My sample radius-x output:
rad_recv: Access-Request packet from host 127.0.0.1:32775, id=165, length=56
User-Name = "myuser"
User-Password = "mypassword"
NAS-IP-Address = 255.255.255.255
NAS-Port = 0
rlm_ldap: - authorize
rlm_ldap: performing user authorization for demo
rlm_ldap: ldap_get_conn: Checking Id: 0
rlm_ldap: ldap_get_conn: Got Id: 0
rlm_ldap: looking for check items in directory...
rlm_ldap: looking for reply items in directory...
rlm_ldap: user demo authorized to use remote access
rlm_ldap: ldap_release_conn: Release Id: 0
rad_recv: Access-Request packet from host 127.0.0.1:32775, id=165,
length=56 Sending Access-Reject of id 165 to 127.0.0.1:32775
I wondor that after files modules failed, why not try LDAP modules? Do I
need more config?
Thanks for all help.
--Wipat
-----------------------------------------
This email was sent using SquirrelMail.
https://front.psu.ac.th/
--
This message has been scanned for viruses and
dangerous content by MailScanner, and is
believed to be clean.
More information about the Freeradius-Users
mailing list