google_ldap and google-ldap-auth
Federico Santulli
federico.santulli at nhm.it
Mon Jun 19 16:21:52 UTC 2023
Hi Alan,
i've the need to recover a custom parameter from Google LDAP to be given
back in the request accept.
How could i achieve this?
Also, is it possible to dynamically authenticate multiple 3rd level dc's
with just one google_ldap_module configuration?
I mean, is it possible to authenticate both
test.domain
ext.test.domain
Kind regards.
Federico
Il 19/06/23 16:34, Alan DeKok ha scritto:
> On Jun 19, 2023, at 8:45 AM, Mathias Maes <mathias.maes at maerlantatheneum.be> wrote:
>> Thanks for your reply. Disabling the "filter_inner_tunnel' policy does
>> indeed work.
> That's good.
>
>> I am rather sure I didn't deliberately enable it and rechecked. But It was
>> enabled in the example configuration script, check here on Github:
>> https://github.com/FreeRADIUS/freeradius-server/blob/v3.0.x/raddb/sites-available/google-ldap-auth
> That file says it's meant for the inner-tunnel authentication. i.e. for TTLS or PEAP. So it should be used as-is with minor edits, rather than copying bits and pieces of it to another virtual server.
>
> Alan DeKok.
>
> -
> List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
-------------- next part --------------
A non-text attachment was scrubbed...
Name: OpenPGP_signature
Type: application/pgp-signature
Size: 840 bytes
Desc: OpenPGP digital signature
URL: <http://lists.freeradius.org/pipermail/freeradius-users/attachments/20230619/8bf000c5/attachment.sig>
More information about the Freeradius-Users
mailing list