Combining both posts. As Allen said replying to your other post. If the FilterId has a space in it, you'll need to quote it. Plus what I said about returning multiple values. It would look like this in ldap as an example:
securityrole: "users otherstuff" securityrole: += "testgroup1 stuff" securityrole: += "testgroup2 stuff" -Dusty Doris On Fri, 18 Jun 2004, Rivera, Denis wrote: > Hello, > > I have group values with spaces in them the rml_ldap is not reading the > value after the space is this a bug? Values in my securityRole values are > Change Password and Luisa Admin. I'm using freeRadius 0.9.3 and OpenLDAP > 2.1.25 > > ad_recv: Access-Request packet from host 10.32.2.108:1164, id=4, length=52 > User-Name = "testuser" > User-Password = "test123" > modcall: entering group authorize for request 1 > rlm_ldap: - authorize > rlm_ldap: performing user authorization for testuser > radius_xlat: '(uid=testuser)' > radius_xlat: 'o=PUSD,c=US' > ldap_get_conn: Got Id: 0 > rlm_ldap: performing search in o=PUSD,c=US, with filter (uid=testuser) > rlm_ldap: looking for check items in directory... > rlm_ldap: Adding ntPassword as NT-Password, value > A4F51A8F148FF0FB30DB313FD41E2282 & op=21 > rlm_ldap: looking for reply items in directory... > rlm_ldap: Adding securityRole as Filter-Id, value Change & op=11 > rlm_ldap: Adding securityRole as Filter-Id, value Luisa & op=11 > rlm_ldap: Adding securityRole as Filter-Id, value Users & op=11 > rlm_ldap: Adding securityRole as Filter-Id, value testgroup1 & op=11 > rlm_ldap: Adding securityRole as Filter-Id, value testgroup2 & op=11 > rlm_ldap: user testuser authorized to use remote access > ldap_release_conn: Release Id: 0 > modcall[authorize]: module "ldap" returns ok for request 1 > modcall[authorize]: module "preprocess" returns ok for request 1 > modcall[authorize]: module "files" returns notfound for request 1 > modcall[authorize]: module "eap" returns noop for request 1 > modcall: group authorize returns ok for request 1 > rad_check_password: Found Auth-Type LDAP > auth: type "LDAP" > modcall: entering group authenticate for request 1 > rlm_ldap: - authenticate > rlm_ldap: login attempt by "testuser" with password "test123" > rlm_ldap: user DN: uid=testuser,ou=Information Technology,o=PUSD,c=US > rlm_ldap: (re)connect to 127.0.0.1:389, authentication 1 > rlm_ldap: bind as uid=testuser,ou=Information Technology,o=PUSD,c=US/test123 > to 127.0.0.1:389 > rlm_ldap: waiting for bind result ... > rlm_ldap: user testuser authenticated succesfully > modcall[authenticate]: module "ldap" returns ok for request 1 > modcall: group authenticate returns ok for request 1 > Login OK: [testuser/test123] (from client edcenter port 0) > Sending Access-Accept of id 4 to 10.32.2.108:1164 > Filter-Id = "Change" > Finished request 1 > > - > List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html > - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
