freeradius LDAP module issue with reading big cn
Дмитрий
zasim87 at gmail.com
Fri Dec 27 15:15:17 UTC 2024
In process of authorization user when user has a list of group, and one of
them too long as example:
memberOf: cn=DMB - System Administration Department - System
Administrator,cn= DMB - System Administration Department,cn=DMB - Internal
IT Support Departmen t,cn=DMB - Infrastructure Department,cn=DMB - Global
Finance Department,cn=DM B - Global Services,cn=DMB -
Corporate,cn=Departments,cn=Example,cn=Tenants,cn
=Access Control Root,ou=Keycloak,ou=Groups,dc=example,dc=com
and target group for authorization located after that group, freeradius
authorization process rejecting request with login incorrect:
Auth: (0) Login incorrect (Group DN "cn=DMB - System Administration
Department - System Administrator,cn=DMB - System Administration
Department,cn=DMB - Internal IT Support Department,cn=DMB - Infrastructure
Department,cn=DMB - Global Finance Department,cn=DMB - Global Services,cn=:
[username] (from client Incubator_switch port 0)
More information about the Freeradius-Users
mailing list