Freeradius 2.0.4 + OpenLDAP Problem (Cleartext-Password)
youness hsina
youness.hsina at gmail.com
Thu May 29 11:22:50 CEST 2008
i decommented all the lines who have relation with ldap in radiusd.conf
file.
here is ths radiusdconf file :
ldap {
server = "iut-velizy.uvsq.fr"
# identity = "ou=Manager,dc=iut-velizy,dc=uvsq,dc=fr"
# password = mypass
basedn = "ou=Manager,dc=iut-velizy,dc=uvsq,dc=fr"
filter = "(uid=%{Stripped-User-Name:-%{User-Name}})"
# base_filter = "(objectclass=radiusprofile)"
# The StartTLS operation is supposed to be used with normal
# ldap connections instead of using ldaps (port 689) connections
start_tls = yes
access_attr = "dialupAccess"
ldap_connections_number = 5
# password_attribute = nspmPassword
# password_attribute = userPassword
#
edir_account_policy_check=no
#
# groupname_attribute = cn
# groupmembership_filter =
"(|(&(objectClass=GroupOfNames)(member=%{Ldap-UserDn}))(&(objectClass=GroupOfUniqueNames)(uniquemember=%{Ldap-UserDn})))"
# groupmembership_attribute = radiusGroupName
timeout = 4
timelimit = 3
net_timeout = 1
# compare_check_items = yes
# do_xlat = yes
# access_attr_used_for_allow = yes
#
# By default, if the packet contains a User-Password,
# and no other module is configured to handle the
# authentication, the LDAP module sets itself to do
# LDAP bind for authentication.
#
# You can disable this behavior by setting the following
# configuration entry to "no".
#
# allowed values: {no, yes}
# set_auth_type = yes
}
[....]
authorize {
ldap
}
[.....]
authenticate {
Auth-Type LDAP {
ldap
}
}
thank you very much for your help
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.freeradius.org/pipermail/freeradius-users/attachments/20080529/32c717fb/attachment.html>
More information about the Freeradius-Users
mailing list