Ldap-Group unlang 2.0.5
Rohaizam Abu Bakar
haizam at myjaring.net
Tue Jul 29 10:20:00 CEST 2008
Dear all,
I'm in process migrating from FR 1.1.X to FR 2.0.5 but stuck with Ldap-Group
using unlang.
I'm trying to convert below line in users file to unlang in authorize
section.. but it's not working..
Using FreeBSD 7.0.
users:-
======
DEFAULT Called-Station-Id == "Y5", ldapmain1-Ldap-Group == "TEST",
Autz-Type := Y5
authorize:-
===========
Trying a few as below but not working...
i) if ( ldapmain1-Ldap-Group == "TEST" ) {
ii) if ( control:ldapmain1-Ldap-Group == "TEST" ) {
iii) if ( "%{ldapmain1-Ldap-Group}" == "TEST" ) {
iv) if ( "%{ldapmain1:Ldap-Group}" == "TEST" ) {
modules/ldap:-
============='
ldap ldapmain1 {
groupname_attribute = jaringService
groupmembership_filter = "(&(uid=%{Stripped-User-Name:-
{UserName}})(objectclass=radiusprofile))"
}
Debug:-
======
++? if ("%{ldapmain1:Ldap-Group}" == "TEST" )
rlm_ldap: - ldap_xlat
expand: Ldap-Group -> Ldap-Group
rlm_ldap: String passed does not look like an LDAP URL.
expand: %{ldapmain1:Ldap-Group} ->
? Evaluating ("%{ldapmain1:Ldap-Group}" == "TEST" ) -> FALSE
++? if ("%{ldapmain1:Ldap-Group}" == "TEST" ) -> FALSE
--haizam
More information about the Freeradius-Users
mailing list