configuring multiple ldap servers

Bob Brandt bob at brandt.ie
Tue Mar 23 14:46:52 CET 2010 

Sorry, I think I misunderstood.

So you have (let's say) 2 LDAP servers with a different user base on each.
You want an internal access point to look at one server and an external
firewall to look at another....

I'm not sure, but you might be able to use HuntGroups to discover which
client device is "calling" and then use unlang IF statement in the authorize
section.

This will probably take a little testing on your side.  If you get it
working I would love to see the end config.

Bob


On Tue, Mar 23, 2010 at 1:36 PM, V Jyothi-B22245 <B22245 at freescale.com>wrote:

>  Hi,
>
> I think it will solve the problem to some extent.
>
> If I have to use a specific ldap server for a specific radius client,
> like I have two radius clients and two ldap servers and I want to use ldap1
> for rad-cl1 and ldap2 for rad-cl2.
> How to map??
>
> Thank you for much your information, I could understand on how to
> load-balance.
>
> Thanks
> Jyothi
>
>  ------------------------------
> *From:* freeradius-users-bounces+b22245=freescale.com at lists.freeradius.org[mailto:
> freeradius-users-bounces+b22245 <freeradius-users-bounces%2Bb22245>=
> freescale.com at lists.freeradius.org] *On Behalf Of *Bob Brandt
> *Sent:* Tuesday, March 23, 2010 2:23 PM
> *To:* FreeRadius users mailing list
> *Subject:* Re: configuring multiple ldap servers
>
> How about you use something like:
>
> authorize {
>        redundant {
>                redundant-load-balance {
>                        ldap1
>                        ldap2
>                }
>                ldap3
>        }
> }
>
> Where the load will be shared evenly between ldap 1 and 2 and only use 3 if
> 1 and 2 are not available.
>
> Bob
>
> On Tue, Mar 23, 2010 at 6:53 AM, V Jyothi-B22245 <B22245 at freescale.com>wrote:
>
>>
>>  Hi,
>>
>> I want to understand in freeradius with rlm_ldap,
>> Is it possible to configure multiple LDAP servers in Freeradius and the
>> freeradius uses different LDAP server for different requests.
>>
>> Is it possible to add some kind of id in radius requests, so that
>> freeradius makes use of that ID to choose which LDAP server can be used for
>> that request.
>> I am new to this freeradius.
>> Please help me to get some understanding ??
>>
>> We can configure one LDAP server in freeradius radiusd.conf ldap section??
>> but how to configure multiple LDAP servers and what is the purpose of filter
>> id attribute in freeradius??
>>
>> Thanks
>> Jyothi
>>
>> -
>> List info/subscribe/unsubscribe? See
>> http://www.freeradius.org/list/users.html
>>
>
>
>
> --
> The problem with socialism is that you eventually run out of other people's
> money.  -  Margaret Thatcher
>
>
> -
> List info/subscribe/unsubscribe? See
> http://www.freeradius.org/list/users.html
>



-- 
The problem with socialism is that you eventually run out of other people's
money.  -  Margaret Thatcher
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.freeradius.org/pipermail/freeradius-users/attachments/20100323/b300d5f1/attachment.html>

More information about the Freeradius-Users mailing list