Steve Sobol <[EMAIL PROTECTED]> wrote: > The Authenticate section of my radiusd.conf specifies unix and ldap > as the authentication methods. When I try to log in using my LDAP > test account, I get the message > > rlm_ldap: Attribute "Password" is required for authentication. Cannot use > "Stripped-User-Name".
Ouch. That's a bug in the server core. The LDAP module is looking at what SHOULD be the password for the request, but it looks like it's set to something else. > I read in the docs or the FAQ (I can't remember which) that the best > thing to do is to use ldap in the Authorize section, have it bind as > the user to confirm the password, and then use ldap in the > Authenticate section - but if I put 'ldap' in the Authorize section, > radiusd segfaults when I try to authenticate a user, whether or not > that user is in LDAP. Hmm... that sounds like another bug <sigh> Are you running the latest CVS snapshot? Alan DeKok. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
