sql authorization but using LDAP for authentication?
Alan DeKok
aland at deployingradius.com
Sat Jan 8 00:51:04 CET 2022
On Jan 7, 2022, at 4:02 PM, Coy Hile <coy.hile at coyhile.com> wrote:
> My question is that since there’s a username set from the LDAP module, but NOT one found in the SQL module, the sql module never checks the `radreply` table.
Yes... the documentation says that's how the SQL module works. If the user is found in "radcheck", then the corresponding "radreply" items are used. If the user isn't found in "radcheck", then no "radreply" items are used.
> Is there some configuration that I need to tweak to make the server check `radreply` table even there’s no user returned from the rad check table?
No.
Why not just create a "radcheck" item for the user? It doesn't have to be anything specific. Just checking if the User-Name matches the user would work.
Alan DeKok.
More information about the Freeradius-Users
mailing list