Robert,
Did you ever get this going ? can you
share your config files radiusd.conf ?
Ron.
-----Original Message-----
From: Robert Morse
[mailto:[EMAIL PROTECTED]
Sent: Tuesday, March
11, 2003 6:34 AM
To:
[EMAIL PROTECTED]
Subject: Re: freeradius with ldap
and ssl
I would suggest using port = 389, tls_mode = no and start_tls = yes That way you will use the StartTLS extended operation and not the old LDAPS
I just tried that and now
I get this error from radiusd:
modcall: entering group authorize
rlm_ldap: - authorize
rlm_ldap: performing user authorization for test_user
radius_xlat: '(uid=test_user)'
radius_xlat: 'ou=people,dc=brown,dc=edu'
ldap_get_conn: Got Id: 0
rlm_ldap: attempting LDAP reconnection
rlm_ldap: (re)connect to directory.cis-qas.brown.edu:389, authentication 0
rlm_ldap: starting TLS
rlm_ldap: ldap_start_tls_s()
rlm_ldap: could not start TLS Success
rlm_ldap: (re)connection attempt failed
rlm_ldap: search failed
Should it matter that I am trying to connect to an Iplanet Directory server?
Or is this only compatible with and OpenLdap server?
� |
