On Thu, 12 Sep 2002, John wrote:
> The logs kept annoying me, so I went and and searched through the source
> code. and the LDAP_OPT_X_TLS is not defined by start_tls, but rather by
> tls_mode, which is not currently a configurable option. It looks like rlm_ldap will
> attempt to use LDAPS every time.
>
> Rather than defining tls_mode as no, I added a line to my copy of 0.7 (not a cvs
> release) that will allow me to configure this.
>
> Since it's only one line, I'm not going to create a patch for it.
>
> In rlm_ldap.c, goto line 202 where it reads:
>
> static CONF_PARSER module_config[] = {
> add this line somewhere in between the brackets (I placed mine at line 214, right
> above start_tls).
>
> {"tls_mode", PW_TYPE_BOOLEAN, offsetof(ldap_instance,tls_mode), NULL,
> "no"},
>
> Compile and install that module (or do the whole distro if you wish).
>
> This adds the following option to your rlm_ldap section of radiusd.conf:
>
> tls_mode = no # defaults to no
>
> Works like a champ!
>
> Cheers,
> John
Applied thanks.
--
Kostas Kalevras Network Operations Center
[EMAIL PROTECTED] National Technical University of Athens, Greece
Work Phone: +30 10 7721861
'Go back to the shadow' Gandalf
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
