FR 3.0.13, reply of attributes missing
Alan DeKok
aland at deployingradius.com
Tue Feb 26 13:02:30 CET 2019
On Feb 26, 2019, at 4:31 AM, Jürgen Northe <jn at northe-online.de> wrote:
> I want to pass VLAN settings from ldap entry to the NAS (HP 5120 Switch) but I only get the "Reply-Message" back.
> The same with "users". The system is a CentOS 7.6.1810 and from Distro view up to date.
> I have read the ldap modue config and tried settings like below but did not succeed. So I tried it with an user entry, same result.
> Is there a main switch in an other config file I might have to set additionally?
No.
> # valuepair_attribute = 'radiusAttribute'
> # control:Auth-Type := 'AuthType'
> # reply:Tunnel-Type := 'radiusTunnelType'
> # reply:Tunnel-Medium-Type := 'radiusTunnelMediumType'
> # reply:Tunnel-Private-Group-ID := 'radiusTunnelPrivategroupId'
>
> mac Cleartext-Password == "mac"
> Tunnel-Type = "VLAN",
> Tunnel-Medium-Type = "IEEE-802",
> Tunnel-Private-Group-Id = "170"
Which line of the "users" file is that on? Because the debug log is pretty clear:
> (0) files: users: Matched entry DEFAULT at line 201
Is the entry you added at line 201?
> (0) ldap1: Performing search in "dc=compend,dc=com" with filter "(cn=001f161eeb3a)", scope "sub"
> (0) ldap1: Waiting for search result...
> (0) ldap1: User object found at DN "cn=NBIVX200S-44,cn=proxmox,cn=192.168.5.0,cn=SUBNET,cn=DHCP Config,dc=compend,dc=com"
> (0) ldap1: Processing user attributes
> (0) ldap1: reply:Reply-Message := 'Hello NBIV-LENO-X200S'
> rlm_ldap (ldap1): Released connection (0)
That's pretty clear. There's only the Reply-Message in LDAP for the user.
Alan DeKok.
More information about the Freeradius-Users
mailing list