Question about FreeRADIUS and LDAP

rainer at rainer at
Fri Oct 2 18:54:50 CEST 2020


I think I've managed to get authentication against a CentOS 8 389-server 

Now, traditionally, our users and the configuration are just in a 
text-file "users" with the password in clear-text.

If I move the users (and only the users) into 389-server, how would the 
text-file look like?

Currently, an entry is like that?

bla at blue  Cleartext-Password := "test"
         Service-Type = Framed-User,
         Framed-Protocol = PPP,
         Framed-Address =,
         Framed-Netmask =,
         Framed-Routing = None,
         Cisco-AVPair = "vpdn:tunnel-id=VRF1",
         Cisco-AVPair = "vpdn:tunnel-type=l2tp",
         Cisco-AVPair = "vpdn:ip-addresses=a.b.c.d",
         Cisco-AVPair = "vpdn:l2tp-tunnel-password=**********",
         Cisco-AVPair = "lcp:interface-config#1=ip vrf forwarding 
bla at blue",
         Cisco-AVPair = "lcp:interface-config#2=ip unnumbered Loopback80"

Or is it better to move everything to LDAP anyway?

The iplanet schema seems to import, after adding
changetype: modify
add: attributetypes

But it's missing some of the above key-words.
How do I add these?

Best Regards

More information about the Freeradius-Users mailing list