freeradius 2.1.7-7.el5 - How to get vendor specific attributes from LDAP
Alan DeKok
aland at deployingradius.com
Fri Nov 25 10:34:11 CET 2011
Jakub Pech wrote:
> First I undrestanded that the radius check are items that radius checks
> in LDAP. But since I havent found any documentation to ldap.attrmap file
Nonsense. The file contains comments which describe what it does.
The doc/rlm_ldap file contains additional documentation.
> (i found only that it may be included in man users, but it isn't in
> freeradius2) I tried both: radiuscheck / radiusreply / radiuscheck and
> radius reply together. Nothing worked for me. That Is the reason why I'm
> almost sure that this isn't the cause of my problem.
You're trying random things because you don't understand how it works.
Even worse, you don't understand how RADIUS and LDAP works. Asking if
FreeRADIUS reads the LDAP schema is *very* wrong. FreeRADIUS isn't an
LDAP server.
> Is there anything else then ldap.attrmap that should be set up for
> sending vendor specific attributes from LDAP?
The schema. Define an LDAP attribute which contains the information
for the VSA. Map that attribute to RADIUS in ldap.attrmap. It should
take all of 15 minutes.
Alan DeKok.
More information about the Freeradius-Users
mailing list