LDAP CONFIGURATION IN FreeRadius
WINANT, KEVIN
KW517G at att.com
Wed May 4 21:43:28 CEST 2016
Version is 2.1.1 which we found is EOL and looking to go to V3.
Did the debug and looks like it loads up > "including configuration file /etc/raddb/modules/ldap"
Looking in there do not find the hostname or IP of the external LDAP server in there.
Reason trying to see LDAP settings is Company in installing SHA256 certs on the External LDAP server soon.
I am trying to determine if LDAP is configured to use port 389 (unsecure) and there will be NO IMPACT to our servers communicating to External LDAP server or IF LDAP is configured to use port 636 (secure) then I would then need to find out if ROOT CA freeradius is using is same ROOT CA External LDAP server is using along with the same serial number.
FreeRadius is totally new to us and sorry for the questions.
The debug: ProdBox debug5-4-16
On Wed, May 04, 2016 at 04:34:04PM +0000, WINANT, KEVIN wrote:
> Hi Folks, On the FreeRadius servers we have inherited, I am trying to locate where LDAP is configured.
What version?
> SO my question is, is there someplace else where the LDAP server may be configured? Or radius.conf is the place.??
> I have poked around in etc/raddb but unable to locate these settings.
Probably
/etc/raddb/modules/ldap for v2
/etc/raddb/mods-{enabled,available}/ldap for v3
or just "grep -lr ldap /etc/raddb/*" will get you in the right
direction, as will running FreeRADIUS in debug mode (radiusd -X)
and reading the output at the start.
Matthew
--
Matthew Newton, Ph.D. <mcn4 at le.ac.uk>
Systems Specialist, Infrastructure Services,
I.T. Services, University of Leicester, Leicester LE1 7RH, United Kingdom
For IT help contact helpdesk extn. 2253, <ithelp at le.ac.uk>
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
-------------- next part --------------
An embedded and charset-unspecified text was scrubbed...
Name: ProdBox debug5-4-16.txt
URL: <http://lists.freeradius.org/pipermail/freeradius-users/attachments/20160504/fbb59b08/attachment-0001.txt>
More information about the Freeradius-Users
mailing list