Need help for configuration - LDAP with custom files Failover
Dajka Tamás
tdajka at geomant.com
Tue Oct 28 10:20:47 CET 2008
That's what I've tried. The authorize section:
redundant {
# if I comment the folloing line out, the password is accepted, but I get "% Authorization failed." from the switch (this is coused by the incorrect "users" file maybe).
files
ldap
ciscopwd
# if I uncomment the following line, freerad won't start
# ok = return
}
The users file:
DEFAULT Auth-Type := Crypt-Local
Service-Type = Login-User
What's wrong than? And how can I implement LDAP group filtering? Just with the modules section groupdn?
Thanks,
Tamas
________________________________________
Feladó: freeradius-users-bounces+tdajka=geomant.com at lists.freeradius.org [freeradius-users-bounces+tdajka=geomant.com at lists.freeradius.org], meghatalmazó: tnt at kalik.net [tnt at kalik.net]
Küldve: 2008. október 27. 18:45
Címzett: FreeRadius users mailing list
Tárgy: Re: Need help for configuration - LDAP with custom files Failover
>I'm facing a problem with Freeradius 2.0.4. I want to make a configuration to allow our Cisco routers to auth via RADIUS. For this, we're using a password file now (let's call it ciscopwd) and another file for granting rights.
>
>I want to change the config file, so that the auth is done by LDAP (plain passwords), BUT if the LDAP is not available the ciscopwd file will do the job. How can this be done? (moreover, I want to have some LDAP group limitations on the logins)
>
Have a look at these:
http://wiki.freeradius.org/Fail-over
http://freeradius.org/radiusd/man/unlang.html
Ivan Kalik
Kalik Informatika ISP
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
More information about the Freeradius-Users
mailing list