I would like to ldap bind with username instead of DN

Wessel Louwris wessel at stutit.nl
Fri Jun 19 15:55:08 CEST 2020



> Op 19 jun. 2020, om 15:36 heeft Adam Bishop <Adam.Bishop at jisc.ac.uk> het volgende geschreven:
> 
> On 19 Jun 2020, at 13:11, Wessel Louwris <wessel at stutit.nl> wrote:
>> DEFAULT Ldap-UserDN := "%{User-Name}”
> 
> Do google permit that format?
> 
> i.e. if you run ldapsearch from the cli with `-D "username"` does it work?
> 
> Adam Bishop


Thanks for you reply! Yes, if I run 

  LDAPTLS_CERT=ldap-client.crt LDAPTLS_KEY=ldap-client.key ldapsearch -W -D user at company.nl -H ldaps://ldap.google.com -b dc=example,dc=com '(mail=user at company.nl)’

on the container where my freeradius is running I can login with the password from user at company.nl  and get results.

That’s why I hope I can convince freeradius to use that username for binding also.

Kind regards,

Wessel





More information about the Freeradius-Users mailing list