get attributes from multiple AD domains
Alan DeKok
aland at deployingradius.com
Fri Jan 29 10:29:09 CET 2010
John wrote:
> Again. Now we can get attributes from AD domains using the Global
> Catalog port 3268.
>
> A new problem: there are 2 same accounts in 2 domains. And we use filter
> = "(sAMAccountName=%{mschap:User-Name})". Looks ldapsearch return 2
> results from AD. And freeRADIUS could not handle this now? How should I
> do to handle this issue?
The filter is configurable for a reason. Add qualifiers to it (or
other parts of the LDAP config) to search for users only in one domain.
Alan DeKok.
More information about the Freeradius-Users
mailing list