multiple ldap servers
Tobias Hachmer
lists at kokelnet.de
Fri May 4 21:58:21 CEST 2012
On 04.05.2012 21:05, jeff donovan wrote:
> Found Auth-Type = LDAP
> # Executing group from file /etc/freeradius/sites-enabled/default
> +- entering group LDAP {...}
> [ldap1] login attempt by "drfoo" with password "XxXxXxX"
> [ldap1] user DN: uid=drfoo,cn=users,dc=ldap2,dc=example.com
> [ldap1] (re)connect to ldap1.example.com:389, authentication 1
> [ldap1] bind as uid=drfoo,cn=users,dc=ldap2,dc=example.com/XxXxXxX
> to ldap1.example.com:389
> [ldap1] waiting for bind result ...
> [ldap1] Bind failed with invalid credentials
> ++[ldap1] returns reject
> Failed to authenticate the user.
> Using Post-Auth-Type Reject
> # Executing group from file /etc/freeradius/sites-enabled/default
> +- entering group REJECT {...}
OK, so what happened here? The ldap bind has failed! That's not the
failure message that the user you want to authenticate has wrong
credentials.
Be sure you configured the ldap modules correctly or send the whole
radiusd -X debug output.
Best regards,
Tobias Hachmer
More information about the Freeradius-Users
mailing list