radius+ldap+peap

Arjuna Scagnetto arjuna at ts.infn.it
Thu May 17 16:43:32 CEST 2007 

can someone tell me a good tutorial about making work freeradius with 
ldap and peap on a 802.1x architecture ?

For the moment my freeradius server dies with a Segmentation Fault, i 
think it's caused by a misunderstanding between peap and ldap but i'm 
not sure.

radius.conf{
	ldap {
		server = "127.0.0.1"
		#identity = "cn=manager"
		#password = prova
		basedn = "dc=example,dc=com"
		filter = "(uid=%{Stripped-User-Name:-%{User-Name}})"
		base_filter = "(objectClass=radiusprofile)"
		password_attribute = userPassword
		
	
		}
	}

user in ldap database {
dn: uid=wclient,ou=dot1x,dc=example,dc=com
objectClass: top
objectClass: radiusprofile
objectClass: inetOrgPerson
cn: wclient
sn: wclient
uid: wclient
description: 802.1x user
userPassword: {SSHA}xxxxxxxxxxxxxxxxxxx
}

Now when i try to authenticate the wireless station freeradius die with 
a Segmentation Fault:


...
_realm: No '@' in User-Name = "wclient", looking up realm NULL
     rlm_realm: No such realm "NULL"
   modcall[authorize]: module "suffix" returns noop for request 5
   rlm_eap: EAP packet type response id 6 length 80
   rlm_eap: No EAP Start, assuming it's an on-going EAP conversation
   modcall[authorize]: module "eap" returns updated for request 5
rlm_ldap: - authorize
rlm_ldap: performing user authorization for wclient
radius_xlat:  '(uid=wclient)'
radius_xlat:  'dc=example,dc=com'
rlm_ldap: ldap_get_conn: Checking Id: 0
rlm_ldap: ldap_get_conn: Got Id: 0
rlm_ldap: performing search in dc=example,dc=com, with filter (uid=wclient)
rlm_ldap: Added password {SSHA}tymOzgljNoVkhZT+K1+jUIW7HKkX3Epe in check 
items
rlm_ldap: looking for check items in directory...
rlm_ldap: Adding userPassword as User-Password, value 
{SSHA}tymOzgljNoVkhZT+K1+jUIW7HKkX3Epe & op=21
rlm_ldap: looking for reply items in directory...
rlm_ldap: user wclient authorized to use remote access
rlm_ldap: ldap_release_conn: Release Id: 0
   modcall[authorize]: module "ldap" returns ok for request 5
Segmentation fault

thanks for helping
Arjuna

-- 
This message has been scanned for viruses and
dangerous content by MailScanner, and is
believed to be clean.

More information about the Freeradius-Users mailing list