On Mon, 29 Jul 2002 [EMAIL PROTECTED] wrote:
> I am having a problem when sending a realm to LOCAL. It seems that when
> sent to LOCAL the realm is not being stripped off so my LDAP search for the
> user fails. When I send the request off to a back-end RADIUS server, the
> realm is stripped and the auth request succeeds. Anyone have any ideas on
> what I am doing wrong? I read the documentation and it says that the realm
> is stripped off by default unless the "nostrip" option is used in the
> proxy.conf file. Here is a snippet from my proxy.conf file...
> ----- proxy.conf -----
> realm x.com {
> type = radius
> authhost = LOCAL
> accthost = LOCAL
> }
>
> realm y.com {
> type = radius
> authhost = 10.0.y.yy:1812
> accthost = 10.0.y.yy:1813
> secret = testing123
> }
> ------------------------------
Use a filter like the following in the ldap module configuration section:
filter = "(uid=%{Stripped-User-Name:-%{User-Name}})"
--
Kostas Kalevras Network Operations Center
[EMAIL PROTECTED] National Technical University of Athens, Greece
Work Phone: +30 10 7721861
'Go back to the shadow' Gandalf
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
