rlm_ldap: Attribute "User-Name" is required for authentication.

Massimo Meregalli maxmere at ml.mbox.it
Tue Nov 6 21:38:09 CET 2007


May be I'm running into a similar problem but with the password
attribute. In my case the problem was that the distinguished name used
by radiusd to bind to the directory to perform user authorization didn't
have permission to read that attribute.

I hope this will help.

Massimo Meregalli


On Tue, 2007-11-06 at 15:22 -0500, Ryan Pugatch wrote:
> Hello,
> 
> While I resolved my previous issue with radiusd segfaulting, I'm now 
> running in to a new issue.
> 
> 
> I'm attempting to have my Linksys WRT54GL (running DD-WRT v23 SP2) use 
> WPA RADIUS against a FreeRADIUS server (FreeRADIUS Version 1.1.7, for 
> host i686-pc-linux-gnu) and subsequently have the FreeRADIUS server use 
> our existing LDAP directory (OpenLDAP v2.2.13-4).
> 
> When a user tries to connect to the access point and the access point 
> contacts the radius server, the following happens:
> 
> 
> Ready to process requests.
> rad_recv: Access-Request packet from host 192.168.42.23:2050, id=0, 
> length=129
> 	User-Name = "rpugatch"
> 	NAS-IP-Address = 192.168.42.23
> 	Called-Station-Id = "0018f8c16a5a"
> 	Calling-Station-Id = "0017f2e7032a"
> 	NAS-Identifier = "0018f8c16a5a"
> 	NAS-Port = 14
> 	Framed-MTU = 1400
> 	NAS-Port-Type = Wireless-802.11
> 	EAP-Message = 0x0200000d017270756761746368
> 	Message-Authenticator = 0xe1b0b05b118ebe49d6b79b7569de75b1
>    Processing the authorize section of radiusd.conf
> modcall: entering group authorize for request 0
> rlm_ldap: - authorize
> rlm_ldap: Attribute "User-Name" is required for authentication.
>    modcall[authorize]: module "ldap" returns invalid for request 0
> modcall: leaving group authorize (returns invalid) for request 0
> Delaying request 0 for 1 seconds
> Finished request 0
> Going to the next request
> --- Walking the entire request list ---
> Waking up in 1 seconds...
> --- Walking the entire request list ---
> Waking up in 1 seconds...
> --- Walking the entire request list ---
> 
> 
> 
> This is most likely an issue with my configuration, however, I'm not 
> sure what the issue is.  I'd appreciate any help I can get.
> 
> 
> Thanks,
> 
> Ryan
> -
> List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html




More information about the Freeradius-Users mailing list