On Fri, 3 Oct 2003, Andreas Stollar wrote:
>
>
> > >
> > > ldap {
> > > access_attr = "objectClass"
> > ^^^^^^^^^^^^^
> > Huh?
>
> I was able to make this work if I just put "dialupAccess: yes" in the LDAP
> record, and use 'access_attr = "dialupAccess"' in radius.conf. However,
> the above entry really did work. I want to authorize and authenticate any
> user that has an LDAP entry.
So, just comment out access_attr
>
>
> >
> > > authorize {
> > > ldap
> > > }
> >
> > You need to add the files module in the authorize section
>
> can you elaborate? the files module seems to be needed only if your users
> information is in some flat files. All of my users information is in LDAP.
You can also have default entries in the users file, like:
DEFAULT Auth-Type := Accept
with
authorize{
files
ldap
}
The above will let you authorize users from ldap and let them in without
authentication.
--
Kostas Kalevras Network Operations Center
[EMAIL PROTECTED] National Technical University of Athens, Greece
Work Phone: +30 210 7721861
'Go back to the shadow' Gandalf
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
