LDAP CONFIGURATION IN FreeRadius
Alan DeKok
aland at deployingradius.com
Thu May 5 18:13:12 CEST 2016
On May 5, 2016, at 12:02 PM, WINANT, KEVIN <KW517G at att.com> wrote:
>
> HI Alan, Thanks for the info and this is a file I was looking at.
> In that file where I would expect to see the LDAP server name: "server ="
> It shows: server = "ldap.your.domain"
So it's an example file. It's not the local configuration.
> Assume this is default before specifying an actual LDAP server hostname
It should. Once you find the correct file, it will have the LDAP server hostname.
This shouldn't be hard. Look in /etc/raddb/mods-enabled. Find the files which contain "ldap". Read them.
> The start tls=no indicates to me that LDAPS is not being used (port 636) and would instead be using unsecure LDAP via port 389.. Is this correct assumption?
Since you're not looking at the correct file, no.
> Still puzzled by the LDAP file having no SPECIFIC LDAP server hostname defined for "server="
You're not looking at the correct file.
This isn't rocket science. If there's no LDAP server hostname, you're not looking at the correct file. The server doesn't magically know to talk to your LDAP hostname.
> Have attached the LDAP file, not sure if will make it through
No. And please don't attach the default configuration files. We know what they look like. They're distributed with the server.
Alan DeKok.
More information about the Freeradius-Users
mailing list