FR 3.0 with eDir
Hubert Kupper
kupper at uni-landau.de
Tue Dec 17 08:24:23 CET 2013
Hi Olivier,
which linux distribution have you running with FR 3? We have OpenSuse
13.1 64Bit.
Regards, Hubert
Am 16.12.2013 08:23, schrieb Olivier Beytrison:
> On 16.12.2013 07:53, Hubert Kupper wrote:
>> Hello,
>>
>> we have version 8.8 running too. How is your ldap config?
>>
> Nothing really special in the config. Almost a vanilla one (except an
> update {} block that I have removed here)
>
> ldap {
> server = "my-ldap-server"
> port = 636
> identity = "cn=admin"
> password = xxxxxxxxxx
> base_dn = "ou=people,o=org"
> edir = yes
> edir_autz = yes
> user {
> base_dn = "${..base_dn}"
> filter = "(uid=%{%{Stripped-User-Name}:-%{User-Name}})"
> }
> group {
> base_dn = "${..base_dn}"
> filter = "(objectClass=posixGroup)"
> membership_attribute = "memberOf"
> }
> profile {
> }
> client {
> base_dn = "${..base_dn}"
> filter = '(objectClass=frClient)'
> attribute {
> identifier = 'frClientIdentifier'
> secret = 'frClientSecret'
> }
> }
> accounting {
> reference = "%{tolower:type.%{Acct-Status-Type}}"
> type {
> start {
> update {
> description := "Online at %S"
> }
> }
> interim-update {
> update {
> description := "Last seen at %S"
> }
> }
> stop {
> update {
> description := "Offline at %S"
> }
> }
> }
> }
> post-auth {
> update {
> description := "Authenticated at %S"
> }
> }
> options {
> chase_referrals = yes
> rebind = yes
> timeout = 10
> timelimit = 3
> net_timeout = 1
> idle = 60
> probes = 3
> interval = 3
> ldap_debug = 0x0028
> }
> tls {
> }
> pool {
> start = 5
> min = 4
> max = 10
> spare = 3
> uses = 0
> lifetime = 0
> idle_timeout = 60
> }
> }
>
More information about the Freeradius-Users
mailing list