Re: DialupAdmin/LDAP - General Questions
This is a discussion on Re: DialupAdmin/LDAP - General Questions within the FreeRADIUS Users forums, part of the Networking and Network Related category; Mathieu B=E9nard wrote: > Hello > > I'd like to manage my LDAP users with DialupAdmin Radius interface,=...
|
|||||||
| FAQ | Members List | Calendar | Search | Today's Posts | Mark Forums Read |
05-12-2005
|
|||
|
|||
Re: DialupAdmin/LDAP - General Questions
Mathieu B=E9nard wrote:
> Hello > > I'd like to manage my LDAP users with DialupAdmin Radius interface,=20 > and here come a few questions. > > 1: It seems that DialupAdmin uses LDAPv2 protocol. Can it possibly use=20 > LDAPv3 ? Absolutely. I'm using it right now. > 2: From what I read in the /lib/ldap/create_user.php3: > > $dn =3D 'uid=3D' . $login . ',' .=20 > $config[ldap_default_new_entry_suffix]; > $new_user_entry["objectclass"][0]=3D"top"; > $new_user_entry["objectclass"][1]=3D"person"; > =20 > $new_user_entry["objectclass"][2]=3D"organizationalPerson"; > $new_user_entry["objectclass"][3]=3D"inetOrgPers= on"; > $new_user_entry["objectclass"][4]=3D"radiusprofi= le"; > > dialupadmin intend to use an old radius LDAP schema instead of=20 > RADIUS-LDAPv3.schema. It uses "uid=3D" as mandatory attribute, but with= =20 > RADIUS-LDAPv3.schema, "cn=3D" is expected. > I don't want to modify the source of dialupadmin, so should I use an=20 > older radius schema, or modify it by myself ? I modified my schema to use "cn=3D" The objectclass radiusprofile is=20 constructed as follows: objectclass ( 1.3.6.1.4.1.3317.4.3.2.1 NAME 'radiusprofile' SUP top STRUCTURAL DESC '' MUST cn MAY ( radiusArapFeatures $ radiusArapSecurity $ radiusArapZoneAcces= s $ radiusAuthType $ radiusCallbackId $ radiusCallbackNumber $ radiusCalledStationId $ radiusCallingStationId $ radiusClass = $ radiusClientIPAddress $ radiusFilterId $=20 radiusFramedAppleTalkLink $ radiusFramedAppleTalkNetwork $ radiusFramedAppleTalkZone $ radiusFramedCompression $ radiusFramedIPAddress $ radiusFramedCompression $ radiusFramedIPAddress $ radiusFramedIPNetmask $ radiusFramedIPXNetwork $ radiusFramedMTU $ radiusFramedProtocol $ radiusFramedRoute $ radiusFramedRouting $ radiusIdleTimeout $ radiusGroupName $ radiusHint $ radiusHuntgroupName $ radiusLoginIPHost $ radiusLoginLATGroup $ radiusLoginLATNode = $ radiusLoginLATPort $ radiusLoginLATService $=20 radiusLoginService $ radiusLoginTCPPort $ radiusLoginTime $ radiusPasswordRetry $ radiusPortLimit $ radiusPrompt $ radiusProxyToRealm $ radiusRealm $ radiusReplicateToRealm $ radiusServiceType $ radiusSessionTimeout $ radiusStripUserName $ radiusTerminationAction $ radiusTunnelAssignmentId $ radiusTunnelClientEndpoint $ radiusIdleTimeout $ radiusLoginIPHost $ radiusLoginLATGroup $ radiusLoginLATNode = $ radiusLoginLATPort $ radiusLoginLATService $=20 radiusLoginService $ radiusLoginTCPPort $ radiusPasswordRetry $ radiusPortLimit $ radiusPrompt $ radiusProfileDn $ radiusServiceType $ radiusSessionTimeout $ radiusSimultaneousUse $ radiusTerminationAction $ radiusTunnelAssignmentId $ radiusTunnelClientEndpoint $ radiusTunnelMediumType $ radiusTunnelPassword $ radiusTunnelPreference $ radiusTunnelPrivateGroupId $ radiusTunnelServerEndpoint $ radiusTunnelType $ radiusUserCategory $ radiusVSA ) ) I hope that helps. -Chris - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html 
|
Linear Mode
