Freeradius 3 - eDirectory Problem
Bebbet van Dinges
bebbet at bebbet.nl
Tue May 17 17:51:59 CEST 2016
Hey Matthew,
Thanks for your reply, i think it would've taken me a long time to
figure this out myself! When i get back to work i'll go and try your
suggestion.
Thanks again,
Bebbet
On 17-5-2016 16:21, Matthew Newton wrote:
> On Tue, May 17, 2016 at 03:20:12PM +0200, Bebbet van Dinges wrote:
>> I'm trying to authorize/authenticate my wifi users against edirectory
>> with Freeradius3, which doesn't work. It worked with this configuration
>> in 2.2, but doesn't seem to provide the required result anymore.
>
>
>> /usr/loca/pf/raddb/modules-enabled/ldap:
>
> This is a v2 config. You need to edit the default v3 config and
> move the options over rather than just copy the v2 config in
> place. Many things have changed.
>
>>
>> ldap openldap {
>> server = "dns3.desaad.nl"
>> port = 636
>> identity = "cn=admin,o=desaad"
>> password = "You wish.."
>> basedn = "o=desaad"
>
> now base_dn, hence you're searching base ""
>
>> # filter = "(cn=%{mschap:User-Name})"
>> filter
>> ="(&(objectClass=inetOrgPerson)(uid=%{Stripped-User-Name:-%{User-Name}}))"
>
> now goes in the user {} subsection.
>
> Don't bother trying to update the config for v3, it will be more
> work than just configuring the default v3 config with your own
> values.
>
> Matthew
>
>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 819 bytes
Desc: OpenPGP digital signature
URL: <http://lists.freeradius.org/pipermail/freeradius-users/attachments/20160517/f070f91b/attachment.sig>
More information about the Freeradius-Users
mailing list