Radius Server and Ldap Server

Arran Cudbard-Bell a.cudbardb at freeradius.org
Mon Jan 13 10:50:39 CET 2014


On 13 Jan 2014, at 09:15, 李亚坤 <liyakun127 at hotmail.com> wrote:

> Hello all,
> 
> I am trying to set up a radius server to perform authentication for wifi
> login against the user with password database in LDAP.
> 
> I have no right to get the password back from LDAP, and the only reply
> information from LDAP server is the I login in success.
> 
> However, I need to login wifi by a user name and password stored in LDAP
> server, without the reply password from LDAP, how can the radius server
> check whether the password I have provided is correct.

By attempting to bind as the user.

authorize {
	if (User-Password) {
		update control {
			Auth-Type := LDAP
		}
	}
}

authenticate {
	Auth-Type LDAP {
		ldap
	}
}

-Arran

Arran Cudbard-Bell <a.cudbardb at freeradius.org>
FreeRADIUS Development Team

FD31 3077 42EC 7FCD 32FE 5EE2 56CF 27F9 30A8 CAA2

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 881 bytes
Desc: Message signed with OpenPGP using GPGMail
URL: <http://lists.freeradius.org/pipermail/freeradius-users/attachments/20140113/b52e2659/attachment.pgp>


More information about the Freeradius-Users mailing list