multiple ldap servers::solved::

jeff donovan jdonovan at beth.k12.pa.us
Sat May 5 03:34:06 CEST 2012


On May 4, 2012, at 7:40 PM, jeff donovan wrote:

> <snip>
> 
> and that is correct. The user does not exist on LDAP1, his records are on LDAP2, which it finds, but it trys to auth against ldap1 ( which will fail ). I need it to step to ldap2

greetings

I made two changes. and it worked.,.. not sure if it the best syntax, but it's the first time I got both systems to call back.

authorize {
 
	ldap1
	if (notfound) {
   		ldap2 
   	}
   	if (reject) {
   		ldap2
   	}




authenticate {


	Auth-Type LDAP {
		ldap1{
		reject = 1
		ok = return
		}
		ldap2 {
		reject = 1
		ok = return
		}
	}



works very well.
thanks for your assistance 

-j


-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 2497 bytes
Desc: not available
URL: <http://lists.freeradius.org/pipermail/freeradius-users/attachments/20120504/101e9b39/attachment.bin>


More information about the Freeradius-Users mailing list