Problem: FreeRadius Authentication using LDAP

suggestme samanaupadhyay at
Tue Nov 8 17:54:13 CET 2011


I have configured FreeRadius to authenticate against LDAP. I have installed
and configured FreeRadius in FreeBSD Server and LDAP is already set up in
another server. I configured as below: (Changes on file are shown on bold

*/usr/local/etc/raddb/modules/ldap :*

ldap {
     # Define the LDAP server and the base domain name
     server = *"localhost"*     
basedn = *"dc=example,dc=com"*
     # Define which attribute from an LDAP "ldapsearch" query
     # is the password. Create a filter to extract the password
     # from the "ldapsearch" output
     password_attribute = "userPassword"
     filter = "(uid=%{Stripped-User-Name:-%{User-Name}})"
     # The following are RADIUS defaults
     start_tls = no
     dictionary_mapping = ${raddbdir}/ldap.attrmap
     ldap_connections_number = 5
     timeout = 4
     timelimit = 3
     net_timeout = 1

*/usr/local/etc/raddb/sites-enabled/default :*

authorize {
    #  The ldap module will set Auth-Type to LDAP if it has not
    #  already been set

Auth-Type LDAP {

 Also, same type of modifications has been done on :


Also, change has been made to users file adding LDAP user authentication.

But when I run radiusd -X command to run freeradius on debug mode, it gives
following error:

/usr/local/etc/raddb/modules/ldap[29]: Failed to link to module 'rlm_ldap':
file not found
/usr/local/etc/raddb/sites-enabled/inner-tunnel[237]: Failed to load module
/usr/local/etc/raddb/sites-enabled/inner-tunnel[237]: Failed to parse "ldap"

I don't know what to do? I would appreciate anyone's idea.

Should I need to configure anything if I have freeradius server on one
machine and LDAP server on another machine. They are not on same


View this message in context:
Sent from the FreeRadius - User mailing list archive at

More information about the Freeradius-Users mailing list