Could someone please see what am I doing wrong in my radius configuration? What I want to do is to set the basedn dinamycally with the realm of the username in the request, because my ldap tree is organized in this way (one Organizational Unit for each domain)... Changing the %{Realm} for another attribute (like %{User-Name}) does exactly what I want, but only for the Realm attribute I cant do this. Im looking in the source code to try to understand what is happening, but Im a hurry with this...
Radiusd.conf LDAP section
ldap {
server = "<myldapserver>"
identity =
"cn=root,<myrootdn>"
password =
<mypass>
basedn = "ou=%{Realm},<the rest>"
filter = "(uid=%U)"
#
default_profile = "cn=radprofile,ou=dialup,o=My Org,c=UA"
#
profile_attribute = "radiusProfileDn"
#access_group =
"cn=clients,ou=dialup,o=My Org,c=UA"
#access_attr =
"dialupAccess"
dictionary_mapping = ${raddbdir}/ldap.attrmap
timeout =
4
timelimit = 3
net_timeout = 1
}
authenticate {
ldap
}
users
DEFAULT Auth-Type := LDAP
Fall-Through = 1
Thanks in advance!
Realms:
<mydomain>
LOCAL:1812
________________________________________________
Essa mensagem foi enviado pelo Webmail Overnet
- List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
