FR + AD + Vlans + LDAP help
Jacob Jarick
mem.namefix at gmail.com
Tue Apr 17 09:13:06 CEST 2007
radiusd -X -A output: http://pastebin.ca/444162
radiusd.conf: http://pastebin.ca/444163
I just figured out that ou != groups.
So my current freeradius user is \admins\radius\freeradius
admins being an orgnisational unit, radius being an ou inside admins.
I get this error when freeradius trys to confirm the user/passwd
against the ADS.
"rlm_ldap: LDAP login failed: check identity, password settings in
ldap section of radiusd.conf"
On 4/17/07, Alan DeKok <aland at deployingradius.com> wrote:
> Jacob Jarick wrote:
> > Im currently trying to configure freeradius to authenticate via a
> > win2k3 server, check the users group and then return a confirmation/
> > denial + vlan id for the cisco WAP to process.
> >
> > Questions:
> >
> > 1: Is ldap the only way of retreiving the users group/s
>
> If the users and groups are in LDAP, yes.
>
> > 2 - Can I talk directly to the ADS using the ldap client (or however
> > its done) instead of setting up a linux openldap server.
>
> Yes. Just point the ldap module to active directory.
>
> Alan DeKok.
> --
> http://deployingradius.com - The web site of the book
> http://deployingradius.com/blog/ - The blog
> -
> List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
>
More information about the Freeradius-Users
mailing list