ldap profile (no full dn in profile attribute)
Adamczak Krzysztof
kradamcz at gmail.com
Mon Jul 4 14:43:50 CEST 2016
Hi,
I have a problem with obtaining profile for ldap user. The problem is
caused by not having full, valid DN to profile - that is I only have
part of it. The structure is quite simple I'll show it below
(simplified). Could you help me with radius configuration? I tried few
options but none worked. I apologize if it was already covered - I
haven't found the answer yet.
Radius config:
profile {
default = "ou=profiles,dc=example,dc=com"
attribute = "profile"
}
LDAP structure
# users
dn: dc=example,dc=com
dc: example
objectClass: dcObject
objectClass: organization
o: example
dn: ou=radius,dc=example,dc=com
ou: radius
objectClass: organizationalUnit
dn: ou=xdsl,ou=radius,dc=example,dc=com
objectClass: organizationalUnit
ou: xdsl
dn: uid=login at com.pl,ou=xdsl,ou=radius,dc=example,dc=com
uid: login at com.pl
...
profile: SOME_PROFILE_NAME
# profiles
dn: ou=profiles,dc=example,dc=com
ou: profiles
objectClass: organizationalUnit
dn: uid=SOME_PROFILE_NAME,ou=profiles,dc=example,dc=com
uid: SOME_PROFILE_NAME
...
thanks,
Chris
More information about the Freeradius-Users
mailing list