Re: nas-identifier and ldap.attrmap
This is a discussion on Re: nas-identifier and ldap.attrmap within the FreeRADIUS Users forums, part of the Networking and Network Related category; On Mon, 18 Apr 2005, guest01 wrote: > Hi > > Thxs for the fast reply!! > > Ok, user ...
|
|||||||
| FAQ | Members List | Calendar | Search | Today's Posts | Mark Forums Read |
04-18-2005
|
|||
|
|||
Re: nas-identifier and ldap.attrmap
On Mon, 18 Apr 2005, guest01 wrote:
> Hi > > Thxs for the fast reply!! > > Ok, user steve (the one with the Auth-Type := Local) exists only for > testing purposes. With user-data in die local users file, the > nas-identifier works!!!! > > So, I don't know why radius ignores my ldap data ... > > Thxs for you help! > > best regards > peda > > > user testuser (defined in the ldap) with userpassword > > ------------------------------------------------------------------------ > dn:uid=testuser,ou=users,dc=myserver,dc=local > > radiusProfileDn: uid=testuser,ou=radius,dc=myserver,dc=local > isVPNUser: TRUE > uid: testuser > objectClass: myserverUser > userPassword: 123456 > ------------------------------------------------------------------------ > > dn:uid=testuser,ou=radius,dc=myserver,dc=local > uid: testuser > cn: testuser > objectClass: radiusprofile > account > radiusNASIdentifier: vpn > > So the user should be allowed to authenticate because of the > different radiusNASIdentifier (NAS-Identifier chilli is the > right one!) I would suggest using the checkval module to achieve that. -- Kostas Kalevras Network Operations Center kkalev@noc.ntua.gr National Technical University of Athens, Greece Work Phone: +30 210 7721861 'Go back to the shadow' Gandalf - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html 
|
Linear Mode
