LDAP module problem

HernĂ¡n Freschi hjf at hjf.com.ar
Wed Oct 7 20:02:48 CEST 2015


> ldap[115]: Invalid location for 'if'

it means the "if" in line 115 of /etc/raddb/mods-enabled/ldap

On Wed, Oct 7, 2015 at 3:01 PM, Hossein Rafighi <Hossein.Rafighi at triumf.ca>
wrote:

> Thanks for the quick reply.
>
> Are you saying this is a known issue with the version I have, and is fixed
> in 3.0.10?
> Running the server in debug mode gives:
> Starting - reading configuration files ...
> including dictionary file /usr/share/freeradius/dictionary
> including dictionary file /usr/share/freeradius/dictionary.dhcp
> including dictionary file /usr/share/freeradius/dictionary.vqp
> including dictionary file /etc/raddb/dictionary
> including configuration file /etc/raddb/radiusd.conf
> including configuration file /etc/raddb/proxy.conf
> including configuration file /etc/raddb/clients.conf
> including files in directory /etc/raddb/mods-enabled/
> including configuration file /etc/raddb/mods-enabled/always
> including configuration file /etc/raddb/mods-enabled/attr_filter
> including configuration file /etc/raddb/mods-enabled/cache_eap
> including configuration file /etc/raddb/mods-enabled/chap
> including configuration file /etc/raddb/mods-enabled/detail
> including configuration file /etc/raddb/mods-enabled/detail.log
> including configuration file /etc/raddb/mods-enabled/dhcp
> including configuration file /etc/raddb/mods-enabled/digest
> including configuration file /etc/raddb/mods-enabled/dynamic_clients
> including configuration file /etc/raddb/mods-enabled/eap
> including configuration file /etc/raddb/mods-enabled/echo
> including configuration file /etc/raddb/mods-enabled/exec
> including configuration file /etc/raddb/mods-enabled/expiration
> including configuration file /etc/raddb/mods-enabled/expr
> including configuration file /etc/raddb/mods-enabled/files
> including configuration file /etc/raddb/mods-enabled/linelog
> including configuration file /etc/raddb/mods-enabled/logintime
> including configuration file /etc/raddb/mods-enabled/mschap
> including configuration file /etc/raddb/mods-enabled/ntlm_auth
> including configuration file /etc/raddb/mods-enabled/pap
> including configuration file /etc/raddb/mods-enabled/passwd
> including configuration file /etc/raddb/mods-enabled/preprocess
> including configuration file /etc/raddb/mods-enabled/radutmp
> including configuration file /etc/raddb/mods-enabled/realm
> including configuration file /etc/raddb/mods-enabled/replicate
> including configuration file /etc/raddb/mods-enabled/soh
> including configuration file /etc/raddb/mods-enabled/sradutmp
> including configuration file /etc/raddb/mods-enabled/unix
> including configuration file /etc/raddb/mods-enabled/unpack
> including configuration file /etc/raddb/mods-enabled/utf8
> including configuration file /etc/raddb/mods-enabled/ldap
> /etc/raddb/mods-enabled/ldap[115]: Invalid location for 'if'
> Errors reading or parsing /etc/raddb/radiusd.conf
>
> There are so many "if"s I am not sure which the above is referring to?
> Also the last line is not quite clear to me!
>
> Cheers,
> Hossein
>
>
> On 10/7/2015 10:47 AM, Alan DeKok wrote:
>
>> On Oct 7, 2015, at 1:40 PM, Hossein Rafighi <Hossein.Rafighi at triumf.ca>
>> wrote:
>>
>>> I installed freeradius-3.0.4-6.el7
>>>
>>    Please don't.  3.0.10 was released this week.  It's trivial to build
>> your own RPM.  And that RPM will include many fixes.
>>
>> on Centos 7.1 to replace our existing freeradius-2.1.12-6. I am having
>>> difficulty enabling LDAP. LDAP in our existing freeradius-2.1.12-6 works
>>> like a charm, but as soon as I enable LDAP in /sites-available/inner-tunnel
>>> radiusd won't start. I have linked ldap in /mods-available.
>>>
>>    Did you run the server in debugging mode as suggested in the FAQ, web
>> pages, "man" page, and daily on this list?  No?  Why not?
>>
>>    The debug output will *tell you* what's going wrong, and why.
>>
>> Here is relevant error messages.
>>>
>>    Nope.  None of those messages are relevant.  You're looking at the
>> logs from systemd, not the logs from FreeRADIUS.
>>
>>    Alan DeKok.
>>
>>
>> -
>> List info/subscribe/unsubscribe? See
>> http://www.freeradius.org/list/users.html
>>
>>
> --
>   _____  _____   _____  _   _  _   _  ____ Hossein Rafighi
>  |_   _||  _  \ |_   _|| | | || \_/ ||  __|TRIUMF, 4004 Wesbrook Mall
>    | |  | |_|  )  | |  | | | ||     || |__ Vancouver BC, Canada, V6T 2A3
>    | |  |  _  /   | |  | \_/ || \_/ ||  __|Voice: (604) 222-1047
>    | |  | | \ \  _| |_ |     || | | || |   Fax:   (604) 222-1074
>    |_|  |_|  \_\|_____| \___/ |_| |_||_|   Website: http://www.triumf.ca
>
> -
> List info/subscribe/unsubscribe? See
> http://www.freeradius.org/list/users.html
>


More information about the Freeradius-Users mailing list