OpenLdap + Freeradius on centos 6.5 Not working

Stefan Paetow Stefan.Paetow at jisc.ac.uk
Thu May 14 12:59:15 CEST 2015


>[ldap] looking for check items in directory...
>[ldap] looking for reply items in directory...
>  [ldap] radiusTunnelPrivateGroupId -> Tunnel-Private-Group-Id:0 = "10"
>  [ldap] radiusTunnelMediumType -> Tunnel-Medium-Type:0 = 802
>  [ldap] radiusTunnelType -> Tunnel-Type:0 = VLAN
>WARNING: No "known good" password was found in LDAP.  Are you sure that
>the
>user is
>                 configured correctly?

In your LDAP, where is your password configured, I.e. Which attribute
contains the password? An ldapsearch query may tell you. I suggest you do
an ldapsearch for your user and see which attributes it returns. Then
adjust ldap.attrmap (as below) to map the appropriate attribute to make it
work.

>#cat /etc/raddb/ldap.attrmap
>
>checkItem User-Password userPassword
>replyItem Tunnel-Type radiusTunnelType
>replyItem Tunnel-Medium-Type radiusTunnelMediumType
>replyItem Tunnel-Private-Group-Id radiusTunnelPrivateGroupId

That's the default in FR 2.x AFAIK.

Stefan Paetow
Moonshot Industry & Research Liaison Coordinator

t: +44 (0)1235 822 125
gpg: 0x3FCE5142
xmpp: stefanp at jabber.dev.ja.net
skype: stefan.paetow.janet

jisc.ac.uk

Jisc is a registered charity (number 1149740) and a company limited by
guarantee which is registered in England under Company No. 5747339, VAT
No. GB 197 0632 86. JiscĀ¹s registered office is: One Castlepark, Tower
Hill, Bristol, BS2 0JA. T 0203 697 5800.

Jisc Collections and Janet Ltd. is a wholly owned Jisc subsidiary and a
company limited by guarantee which is registered in England under Company
No. number 2881024, VAT No. GB 197 0632 86. The registered office is:
Lumen House, Library Avenue, Harwell, Didcot, Oxfordshire, OX11 0SG. T
01235 822200.




>




More information about the Freeradius-Users mailing list