Freeradius + Ldap - Authorise OK but NO dynamic VLANs

Matthew Newton mcn4 at leicester.ac.uk
Tue Aug 23 13:45:22 CEST 2016


On Tue, Aug 23, 2016 at 01:32:30PM +0200, Matthew Pulis wrote:
> radius at daloradius:~$ ldapsearch -h localhost -b dc=seminary,dc=local -s sub
> '(cn=ttester3)' ismemberOf -D "cn=admin,dc=seminary,dc=local" -w PASS

should be "memberOf", not "ismemberOf".

> # extended LDIF
> #
> # LDAPv3
> # base <dc=seminary,dc=local> with scope subtree
> # filter: (cn=ttester3)
> # requesting: ismemberOf
> #
> 
> # ttester3, SeminaryAdmin, SeminaryOU, seminary.local
> dn: cn=ttester3,cn=SeminaryAdmin,ou=SeminaryOU,dc=seminary,dc=local
> 
> # search result
> search: 2
> result: 0 Success
> 
> # numResponses: 2
> # numEntries: 1

What is the output from the following?

ldapsearch -h localhost -b dc=seminary,dc=local -s sub '(cn=ttester3)' memberOf -D "cn=admin,dc=seminary,dc=local" -w PASS

Does it include a memberOf attribute?

If not, then you need to look at OpenLDAP again.

Matthew


-- 
Matthew Newton, Ph.D. <mcn4 at leicester.ac.uk>

Systems Specialist, Infrastructure Services,
I.T. Services, University of Leicester, Leicester LE1 7RH, United Kingdom

For IT help contact helpdesk extn. 2253, <ithelp at le.ac.uk>


More information about the Freeradius-Users mailing list