Configure authentication via LDAP Group membership issue [sec=unclassified]
David Hobley
david.hobley at mionegroup.com
Wed Oct 31 02:53:23 CET 2007
Frank,
Thank you - greatly appreciated. This made me realise that my thinking was foggy when I had defined group memberships. All working now.
Cheers,
David
----- Original Message -----
From: "Frank MR Ranner" <Frank.Ranner at defence.gov.au>
To: "FreeRadius users mailing list" <freeradius-users at lists.freeradius.org>
Sent: Wednesday, 31 October 2007 10:20:36 AM (GMT+1000) Australia/Brisbane
Subject: RE: Configure authentication via LDAP Group membership issue [sec=unclassified]
...
_______________________________
The memberUid attribute in a posixgroup is supposed to hold the uid, not
the uidNumber. That would make your groupmembership_filter =
"(memberUid=%{User-Name})" or more robustly,
groupmembership_filter =
"(&(memberUid=%{Stripped-User-Name:-%{User-Name}})(objectClass=posixGrou
p))"
Regards,
Frank Ranner
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.freeradius.org/pipermail/freeradius-users/attachments/20071031/258fde31/attachment-0001.html>
More information about the Freeradius-Users
mailing list