Re: Authenticating using LDAP module

Wed, 17 Sep 2003 10:23:25 -0700 

On Wed, 17 Sep 2003, Vishal Jose wrote:

>
>
> I have a problem in(my radclient) getting authenticated by RADIUS Server using LDAP 
> module.I have installed Openldap in my local machine.
>
> Let me put the info about my files that I'm using.I'm very sorry if u people feel 
> that this much info is not necessary to figure out problem...
>
> Say my slapd.conf is the following:
>
> --<radiusd.conf>
>
> modules{
>       ldap{
>
>               server = "10.0.1.180"
>               #server = localhost ->Tried this also
>               #identity = "cn=manager ,o=icope"
>               #password = coin
>                 basedn = "o=icope"
>                 filter = "uid=%u"

Hmm, that should be "cn=%u" for things to work.

>                 dictionary_mapping = ${raddbdir}/ldap.attrmap
>                 timeout = 4
>                 timelimit = 3
>                 net_timeout = 1
>                 ldap_debug = 0x0000
>           }
> }
>
> Meanwhile in the server end(I'm adding all the log from server end)
>
> $ radiusd -x


Please use radiusd -X so that both debug levels are logged

> rad_recv: Access-Request packet from host 10.0.1.180:1088, id=104, length=46
>         User-Name = "vishal"
>         Password = "vishal"
> rlm_ldap: - authorize
> rlm_ldap: performing user authorization for vishal
> ldap_get_conn: Got Id: 0
> rlm_ldap: (re)connect to 10.0.1.180:389, authentication 0
> rlm_ldap: bind as / to 10.0.1.180:389
> rlm_ldap: waiting for bind result ...
> rlm_ldap: object not found or got ambiguous search result

The ldap search was not successful. Please increase the debug level in radiusd
(either -xx or -X) and check your ldap server logs.

> rlm_ldap: search failed
> ldap_release_conn: Release Id: 0
> rad_recv: Access-Request packet from host 10.0.1.180:1088, id=104, length=46
> Sending Access-Reject of id 104 to 10.0.1.180:1088
>
> How to look about this probs.As a newbie to RADIUS Server configuration, I'll 
> appreciate if somebody can help me out in figuring this problem.
>
> Thanx in advance
>
> -Vishal
>
>
> -
> List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
>

--
Kostas Kalevras         Network Operations Center
[EMAIL PROTECTED]       National Technical University of Athens, Greece
Work Phone:             +30 210 7721861
'Go back to the shadow' Gandalf

- 
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

Reply via email to