Hello:
I need help !!!
I need to make a consultation of groups from a NetScreen to a
LDAP server through freeradius.
When making the consultation, in debug of freeradius single appears
username and password, and not the group to consult.
In the users file:
DEFAULT Auth-Type := LDAP
Fall-Through = 1
DEFAULT Ldap-Group == "fortineta" , Auth-Type := LDAP
but I cannot manage to obtain the name of the group in automatic form
from the consultation
The radiusd.conf:
ldap {
cn=%GroupName
server = "ds.puc.cl"
# identity = "cn=admin,o=My Org,c=UA"
# password = mypass
basedn = "o=puc,c=cl"
#filter = "(uid=%{Stripped-User-Name:-%{User-Name}})"
compare_check_items = yes
groupname_attribute = cn
#filter = "(uid=%{Stripped-User-Name:-%{User-Name}})"
groupmembership_filter =
"(|(&(objectClass=GroupOfNames)(member=%{Ldap-UserDn}))(&(objectClass=Gr
oupOfUniqueNames)(uniquemember=%{Ldap-UserDn})))"
groupmembership_attribute = %groupname
# set this to 'yes' to use TLS encrypted connections
# to the LDAP database by using the StartTLS extended
# operation.
# The StartTLS operation is supposed to be used with
normal
# ldap connections instead of using ldaps (port 689)
connections
start_tls = no
The group consult only work when I put the group name in the users file.
(fortineta)
Regards
Marcelo Azola M.
Santiago - Chile
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
