Slow Ldap Authorization
Phil Mayers
p.mayers at imperial.ac.uk
Tue Jan 15 08:45:47 CET 2013
On 01/11/2013 10:15 PM, Tyler Brady wrote:
> basedn = "DC=company,DC=com"
Try setting a more specific (longer) base DN. As Arran has pointed out,
you're getting LDAP referrals. Active Directory likes to do this if you
query the LDAP tree from a point "above" >1 database, even though
they're all available from the same server.
Preferably you'll have an OU below which are only objects, not more AD
LDAP databases (including ADs own "internal" DBs, "CN=Configuration" and
the like).
If you're not familiar with the steps involved to get there, you'll need
some assistance I'm afraid - and this list can't really provide it, that
being an AD-specific issue.
More information about the Freeradius-Users
mailing list