OpenLDAP Group membership to Filter-ID

Arran Cudbard-Bell a.cudbardb at freeradius.org
Sat Aug 16 17:52:01 CEST 2014


On 15 Aug 2014, at 12:45, Alex Gregory <alex at c2company.com> wrote:

> Hi All-
> 
> Does this config seem right to not pass up the filter-ID based on the below output, or could this be due to the fact that I am running a version that is almost 2 years old?
> 
> ldap {
>       server = "localhost"
>       identity = "cn=admin,dc=team,dc=company,dc=com"
>       password = xxxxx
>       basedn = "ou=Users,dc=team,dc=company,dc=com"
>       scope = “sub”
>       filter = "(uid=%{%{Stripped-User-Name}:-%{User-Name}})”
>> }

The LDAP in FreeRADIUS v3.0.x make significantly more sense. If you're trying to do anything complex then I recommend using that.

-Arran

Arran Cudbard-Bell <a.cudbardb at freeradius.org>
FreeRADIUS development team

FD31 3077 42EC 7FCD 32FE 5EE2 56CF 27F9 30A8 CAA2

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 881 bytes
Desc: Message signed with OpenPGP using GPGMail
URL: <http://lists.freeradius.org/pipermail/freeradius-users/attachments/20140816/28035c45/attachment.pgp>


More information about the Freeradius-Users mailing list