Question about FreeRADIUS and LDAP
rainer at ultra-secure.de
rainer at ultra-secure.de
Fri Oct 2 18:54:50 CEST 2020
Hi,
I think I've managed to get authentication against a CentOS 8 389-server
working.
https://www.nasirhafeez.com/freeradius-with-ldaps-on-azure-ad-domain-services/
Now, traditionally, our users and the configuration are just in a
text-file "users" with the password in clear-text.
If I move the users (and only the users) into 389-server, how would the
text-file look like?
Currently, an entry is like that?
bla at blue Cleartext-Password := "test"
Service-Type = Framed-User,
Framed-Protocol = PPP,
Framed-Address = 192.168.1.5,
Framed-Netmask = 255.255.255.0,
Framed-Routing = None,
Cisco-AVPair = "vpdn:tunnel-id=VRF1",
Cisco-AVPair = "vpdn:tunnel-type=l2tp",
Cisco-AVPair = "vpdn:ip-addresses=a.b.c.d",
Cisco-AVPair = "vpdn:l2tp-tunnel-password=**********",
Cisco-AVPair = "lcp:interface-config#1=ip vrf forwarding
bla at blue",
Cisco-AVPair = "lcp:interface-config#2=ip unnumbered Loopback80"
Or is it better to move everything to LDAP anyway?
The iplanet schema seems to import, after adding
changetype: modify
add: attributetypes
But it's missing some of the above key-words.
How do I add these?
Best Regards
Rainer
More information about the Freeradius-Users
mailing list