Can Post-Auth-Type REJECT log LDAP user not found
Alan DeKok
aland at deployingradius.com
Mon May 19 16:10:15 UTC 2025
On May 19, 2025, at 7:07 AM, thomas <thomas.nodon at gmail.com> wrote:
> I have a question regarding Post-Auth-Type REJECT, it correctly logs Login
> incorrect, but the &Module-Failure-Message is ambiguous for our needs when
> it comes to troubleshooting.
You can always check the return code of the LDAP module, and then manually add a message.
> Is it possible to log something along the lines of "LDAP user not found"
> without making custom loglines? I believe this was possible on FreeRADIUS
> 2.x.x.
I don't recall that being part of v2. But it's easy enough to add in unlang:
ldap
if (notfound) {
... add a message here.
}
Alan DeKok.
More information about the Freeradius-Users
mailing list