FR + AD + Vlans + LDAP help

Jacob Jarick mem.namefix at gmail.com
Tue Apr 17 09:13:06 CEST 2007


radiusd -X -A output: http://pastebin.ca/444162
radiusd.conf: http://pastebin.ca/444163

I just figured out that ou != groups.

So my current freeradius user is \admins\radius\freeradius
admins being an orgnisational unit, radius being an ou inside admins.

I get this error when freeradius trys to confirm the user/passwd
against the ADS.

"rlm_ldap: LDAP login failed: check identity, password settings in
ldap section of radiusd.conf"

On 4/17/07, Alan DeKok <aland at deployingradius.com> wrote:
> Jacob Jarick wrote:
> > Im currently trying to configure freeradius to authenticate via a
> > win2k3 server, check the users group and then return a confirmation/
> > denial + vlan id for the cisco WAP to process.
> >
> > Questions:
> >
> > 1: Is ldap the only way of retreiving the users group/s
>
>   If the users and groups are in LDAP, yes.
>
> > 2 - Can I talk directly to the ADS using the ldap client (or however
> > its done) instead of setting up a linux openldap server.
>
>   Yes.  Just point the ldap module to active directory.
>
>   Alan DeKok.
> --
>   http://deployingradius.com       - The web site of the book
>   http://deployingradius.com/blog/ - The blog
> -
> List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
>



More information about the Freeradius-Users mailing list