FEERADIUS and SUN Directory server groups
"Petr \"Qaxi\" Klíma"
qaxi at seznam.cz
Mon Sep 18 13:53:47 CEST 2006
Hello
I am using freeradius (1.0.1) with SUN directory server (5.2)
Authentication (username:password) works well but I do not know how to
use LDAP for group mapping (to Ldap-Group).
The problem:
in SUN DS there are groups defined in two ways (If you use SUN JES system)
===================================================
"subscribe group"
$ ldapsearch cn=gprs_subscr
dn: cn=gprs_subscr,ou=Groups,dc=myorg
cn: gprs_subscr
objectClass: groupofurls
objectClass: groupofuniquenames
objectClass: top
objectClass: iplanet-am-managed-assignable-group
objectClass: iplanet-am-managed-group
memberURL: ldap:///dc=myorg??sub?memberof=cn=gprs_subscr,ou=Groups,dc=myorg
iplanet-am-group-subscribable: false
===================================================
or
"filteredgroup"
===================================================
$ ldapsearch cn=gprs_filter
dn: cn=gprs_filter,ou=Groups,dc=myorg
cn: gprs_filter
objectClass: groupofurls
objectClass: groupofuniquenames
objectClass: top
objectClass: iplanet-am-managed-filtered-group
objectClass: iplanet-am-managed-group
memberURL: ldap:///dc=myorg??sub?(&(uid=k*)(o=mysuborg))
===================================================
How should I set groupmembership_filter or how should I use do_xlat (I
probably misunderstand the feature)
Thanks for any help
--
Petr Klíma
e-mail: qaxi at seznam.cz
More information about the Freeradius-Users
mailing list