ldap backend and Realm
Mustapha Bouikhif
Mustapha.Bouikhif at cnrs-gif.fr
Tue Nov 18 12:23:16 CET 2008
tnt at kalik.net wrote:
>> Here is the debug of radiusd (attached file)
>>
>>
>
> You are playing a dangerous game by reusing an old radiusd.conf.
>
>
>> [ldap] expand: %{control:My-BaseDN} -> ou\3dpeople\2cdc\3ddr4\2cdc\3dcnrs\2cdc\3dfr
>>
>
> basedn expansion went well.
>
>
>> rlm_ldap: bind as uid=Manager,%{control:My-BaseDN}/sirc2 to ldapauth.cnrs-gif.fr:389
>>
>
> But identity didn't.
>
> It looks like you will have to create 8 ldap instances and switch between
> them:
>
> switch "%{Realm}" {
> case "domain1" { ldap1}
> case ...
> }
>
> This should go instead of ldap in authorize.
>
> Ivan Kalik
> Kalik Informatika ISP
>
> -
> List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
>
>
Thanks Ivan & Alan. It works by defining multiple ldap in my config.
--
Mustapha BOUIKHIF
Service Systèmes d'Information
CNRS - DR4
tel: +33 1 69 82 33 97
fax: +33 1 69 82 33 39
More information about the Freeradius-Users
mailing list