You shouldn't have to edit rlm_ldap.c to get it to compile. The problem I had (Solaris 9) was that the configure script did not add the path to the ldap headers in the rlm_ldap Makefile, even though I had specified --with-rlm-ldap-include-dir=blah to the configure script.
If you add the relevant -I and -L flags to the rlm_ldap Makefile, it should compile... >-----Original Message----- >From: [EMAIL PROTECTED] >[mailto:[EMAIL PROTECTED] On Behalf >Of [EMAIL PROTECTED] >Sent: Wednesday, 2 February 2005 6:05 AM >To: [email protected] >Subject: WG: Install problems on Solaris 8 > >somehow two lines did not make it into the doc: >./configure.sh >should contain two more entries: >--with-ltdl-lib=/opt/csw/share/libtool/libltdl >--with-ltdl-include=/opt/csw/share/libtool/libltdl > >or wherever "find / -name ltdl.*" finds the ".h" file. > >Matthias Rumitz >TC Unix / Netzwerke > >ADIVA Computertechnologie GmbH >Norsk-Data-Str. 1 >D-61352 Bad Homburg v.d.H. >Fon: +49(0) 61 72 / 48 61 - 0 >Fax: +49(0) 61 72 / 48 61 - 700 >Web: http://www.adiva.de eMail: [EMAIL PROTECTED] > >Diese E-Mail Nachricht enth�lt vertrauliche und/oder rechtlich >gesch�tzte Informationen. >Wenn Sie nicht der richtige Adressat sind oder diese E-Mail >irrt�mlich erhalten haben, informieren Sie bitte sofort den >Absender und vernichten Sie diese Mail. > >This e-mail message may contain confidential and/or privileged >information. >If you are not the intended recipient (or have received this >e-mail in error) please notify the sender immediately and >destroy this e-mail. > >----- Originalnachricht ----- >Von: <[EMAIL PROTECTED]> >Datum: Dienstag, Februar 1, 2005 5:51 pm >Betreff: WG: Install problems on Solaris 8 > >> Do you know how to compile pre 1.0.2? (I really do have problems!) >> Here is how to get 1.0.0 and 1.0.1 to work on Sol 8 / 9. >> >> Requirements: >> gcc, gdbm, gmake, libiconv, openssh, openssl, tcp_wrappers, zlib >> pkg_get (for openldap) >> /etc/profile or /.profile >> PATH=/opt/csw/bin:$PATH >> >> >PATH=$PATH:/usr/local/bin:/usr/ccs/bin:/usr/sfw/bin:/usr/openwi >n/bin >> >LD_LIBRARY_PATH=/opt/csw/lib:$LD_LIBRARY_PATH:/opt/csw/lib/sasl2 >> >> >LD_LIBRARY_PATH=$LD_LIBRARY_PATH:/usr/lib:/usr/local/lib:/usr/local/ >> ssl/lib >> LD_LIBRARY_PATH=$LD_LIBRARY_PATH:/usr/openwin/lib >> MANPATH=/usr/man:/usr/local/man >> export PATH LD_LIBRARY_PATH MANPATH >> >> Blastwave: >> pkg-get >> pkgadd -d pkg_get.pkg >> If not Solaris9 (/usr/sfw/bin): >> wget-i386.bin / wget-sparc.bin >> chmod 0755 wget >> $PATH: wget, gzip, /opt/csw/bin >> URL in /opt/csw/etc/pkg-get.conf >> >> GPG: >> pkg-get install textutils (extra install) >> pkg-get install gnupg >> gnupg installs: bdb4, bzip2, common, expat, gettext, gsed >> libiconv, libtool, openldap, openssl, >> sasl, textutils, zlib >> >> Key for GPG: >> wget http://www.blastwave.org/mirrors.html >> gpg --import mirrors.html >> pkg-get -U (now without errors) >> pkg-get -c (list s. gunpg) >> >> OpenLDAP: >> pkg-get install openldap-2.1.22 (s.o. should be installed already) >> >> Perl: >> pkg-get install perl >> >> LDAP Fix: >> ./src/modules/rlm_ldap/rlm_ldap.c >> unterhalb #define TIMELIMIT 5 >> /* Anpassungen fuer OpenLDAP */ >> #define LDAP_OPT_SUCCESS 0 >> #define LDAP_OPT_DEBUG_LEVEL 0x5001 /* debug >> level */ >> #define LDAP_OPT_NETWORK_TIMEOUT 0x5005 /* socket >> level timeout */ >> #define LDAP_OPT_X_TLS 0x6000 >> #define LDAP_OPT_X_TLS_CACERTFILE 0x6002 >> #define LDAP_OPT_X_TLS_CACERTDIR 0x6003 >> #define LDAP_OPT_X_TLS_CERTFILE 0x6004 >> #define LDAP_OPT_X_TLS_KEYFILE 0x6005 >> #define LDAP_OPT_X_TLS_RANDOM_FILE 0x6009 >> #define LDAP_OPT_X_TLS_HARD 1 >> >> LTDL Fix: >> ./src/modules/rlm_sql/rlm_sql.h >> ./src/include/modpriv.h >> >> LibTool: copied created libtool from 1.0.1 to 1.0.2s: >> ./libltdl: make seems ok >> ./ make breaks at rlm_eap >> >> Alan DeKok wrote in response to [EMAIL PROTECTED]: >> There are known problems with 1.0.1 on Solaris. >> $ cvs -d :pserver:[EMAIL PROTECTED]:/source login >> <type in: anoncvs> >> $ cvs -d :pserver:[EMAIL PROTECTED]:/source checkout - r >> release_1_0 radiusd >> OR: ftp cvs.freeradius.org anonymous email mget >pub/radius/CVS.../* >> Might work, but does not compile, yet! >> >> Compiling: >> freeradius: cd ./libltdl: ./configure --enable-ltdl-install >> freeradius: cd ./libltdl: make (erzeugt Fehler, Ursache unklar) >> freeradius: cd ./src: CONFIGURE nicht n�tig (?) >> freeradius: cd ./src: make >> freeradius: ./configure.sh >> # cd ./libltdl >> # ./configure --enable-ltdl-install >> # make >> # cd ../src >> # make >> # cd .. >> ./configure >> \ >> --without-rlm_krb5 >> \ >> --without-rlm_sql_iodbc --without-rlm_sql_mysql >> \ >> --without-rlm_sql_postgresql >> \ >> --without-rlm_sql_oracle --without- >rlm_sql_unixodbc >> \ >> --with-include-dir=/opt/csw/include >> \ >> --with-rlm-sql-include-dir=/opt/csw/include >> \ >> --with-rlm-ldap-include-dir=/opt/csw/include >> \ >> --with-openssl-includes=/usr/local/ssl/include >> \ >> --with-openssl-libraries=/usr/local/ssl/lib >> >> > ../config.050118.log >> # >> # Without LDAP support: >> # >> # ./configure --without-rlm_ldap \ >> # --with-openssl-includes=/usr/local/ssl/include \ >> # --with-openssl-libraries=/usr/local/ssl/lib > >> config.041203.log freeradius: make >> freeradius: make install >> freeradius: vi /usr/local/ssl/misc/CA.pl: #!/opt/csw/bin/perl >> freeradius: vi scripts/certs.sh (Zufalls-Zeichenfolge eintragen, >> kein " !) >> freeradius: scripts/certs.sh (Syntax Error beheben) >> freeradius: scripts/CA.certs: PASSWORD = eap.conf (s.n.Zeile) >> /usr/local/etc/raddb/eap.conf: private_key_password >> >> Add user: >> /usr/local/etc/raddb/users >> >> Configure server: >> /usr/local/etc/raddb/radiusd.conf >> /usr/local/etc/raddb/clients.conf >> >> Configure proxy: >> /usr/local/etc/raddb/proxy.conf >> >> Start freeradius in debug mode: >> /usr/local/sbin/radiusd -sfxxyz -l stdout >> /usr/local/sbin/radiusd -X >> >> Test freeradius: >> /usr/local/bin/radtest bob bob localhost 0 testing123 >> >> After changes: freeradius CTRL-C and restart >> >> MS-Chapv2: EAP-TLS requires certificates >> path to openssl and CA.pl >> Certificates: /usr/local/radius/certs.sh >> cp -r /usr/local/radius/certs /etc/raddb/ >> >> Cisco Setup: >> Express SetUp: >> Name: DE-LLH-R-AP001 >> MAC: 0011.93b8.00ff >> IP: 172.22.222.6 >> SNMP: defaultCommunity (ro) >> Role: Access Point Root >> Express Security: >> SSID: DE-LLH (broadcast) >> VLAN: none >> Encryption: ciphers tkip >> Authentication: open+EAP, network+EAP >> Key Managment: wpa >> Radius Server: 172.22.222.42 >> Radius Secret: de-llh (vgl. RADIUS: client.conf) >> Network Interfaces: >> IP Address >> Fast Ethernet >> Radio0-802.11G - Status & Settings >> Radio1 - not installed >> Security - Admin Access: >> Default Authentication >> Password: bier >> User: admin (rw) >> Password: bier >> Security - Encryption: >> Cipher: TKIP >> Keys: keine >> Properties: keine >> Security - SSID Manager: >> DE-LLH >> Open Authentication with EAP >> Network EAP with MAC Authentication >> Server: Use Defaults >> Key Managment Mandatory: WPA (no Pre-shared Key) >> Accounting disabled >> General Settings off >> EAP Client: pallhuber / pallhuber >> Global Radio0 SSID Properties: DE-LLH / DE-LLH Force >> Security - Server Manager: >> Backup Radius: none >> Server List: 172.22.222.42 >> Shared Secret: de-llh (vgl. RADIUS: client.conf) >> Authentication: 1812 >> Accounting: 1813 >> Server Properties: 172.22.222.42 (alle bis auf TACACS) >> Global Properties: none >> Security - Local Radius: >> Statistics: none >> General Setup: none >> EAP-FAST Setup: none >> Security - Advanced Security: >> Mac Addresses: Authentication Server if not in Local List >> Local List: 0030.f1b5.d16b >> Services: >> Telnet/SSH: Disabled / Enabled >> Hot Standby: Disabled >> Discovery: Enabled >> DNS: Disabled >> Filter: none >> HTTP: https >> QoS: none >> SNMP: Disabled >> NTP: Disabled / Datum & Uhrzeit einstellen >> VLAN: None >> ARP Caching: Disabled >> Wireless Services: >> none >> System Software: >> Model: AIR-AP1231G-E-K9 (802.11g, Europa) >> Serial: FHK0832JOYZ >> File: c1200-k9w7-tar.123-2.JA >> Configuration: show config, restart, LED >> Event Log: >> Syslog Server: 172.22.222.42 >> Facility: Local use 7 >> # Solaris9: /etc/syslog.conf: Logging Access Point Messages >> user.debug /var/log/authlog >> local7.debug /var/log/access_point >> /etc/init.d/syslog stop >> /etc/init.d/syslog start (syslog service starting.) >> more /etc/syslog.pid >> >> Administration: >> /freeradius/dialup_admin/htdocs/*.php in Apache "htdocs" >> >> Testing: >> echo 'user-name=matthias, user-password=hello'| >> /usr/local/bin/radclient >> 172.22.222.42 auth adiva.de-0205 >> /usr/local/bin/radtest matthias hello 172.22.222.42 0 adiva.de-0205 >> >> Compilig freeradius / squid: >> rlm_ldap missing definitions: >> below #define TIMELIMIT 5 >> /* Anpassungen fuer OpenLDAP */ >> #define LDAP_OPT_SUCCESS 0 >> #define LDAP_OPT_DEBUG_LEVEL 0x5001 /* debug >> level */ >> #define LDAP_OPT_NETWORK_TIMEOUT 0x5005 /* socket >> level timeout */ >> #define LDAP_OPT_X_TLS 0x6000 >> #define LDAP_OPT_X_TLS_CACERTFILE 0x6002 >> #define LDAP_OPT_X_TLS_CACERTDIR 0x6003 >> #define LDAP_OPT_X_TLS_CERTFILE 0x6004 >> #define LDAP_OPT_X_TLS_KEYFILE 0x6005 >> #define LDAP_OPT_X_TLS_RANDOM_FILE 0x6009 >> #define LDAP_OPT_X_TLS_HARD 1 >> >> #define LDAP_OPT_DEBUG_LEVEL 0x5001 /* debug >> level */ >> #define LDAP_OPT_NETWORK_TIMEOUT 0x5005 /* socket >> level timeout */ >> >> /opt/csw/include/ldap.h defines >> everything /opt/SUNWwbsvr/plugins/include/ldapsdk50/ldap.h >> headers only >> /usr/include/ldap.h nothing >> defined here >> /usr/iplanet/ds5/plugins/slapd/slapi/include/ldap.h headers only >> /usr/ds/v5.2/plugins/slapd/slapi/include/ldap.h headers only >> >> Matthias Rumitz >> TC Unix / Netzwerke >> >> ADIVA Computertechnologie GmbH >> Norsk-Data-Str. 1 >> D-61352 Bad Homburg v.d.H. >> Fon: +49(0) 61 72 / 48 61 - 0 >> Fax: +49(0) 61 72 / 48 61 - 700 >> Web: http://www.adiva.de eMail: [EMAIL PROTECTED] >> >> Diese E-Mail Nachricht enth�lt vertrauliche und/oder rechtlich >> gesch�tzte Informationen. >> Wenn Sie nicht der richtige Adressat sind oder diese E-Mail >irrt�mlich >> erhalten haben, informieren Sie bitte sofort den Absender und >> vernichten Sie diese Mail. >> >> This e-mail message may contain confidential and/or privileged >> information. >> If you are not the intended recipient (or have received this e- mail >> in error) please notify the sender immediately and destroy this >> e-mail. >> >> ----- Originalnachricht ----- >> Von: "Schoggins, George" <[EMAIL PROTECTED]> >> Datum: Freitag, Januar 28, 2005 8:13 pm >> Betreff: Install problems on Solaris 8 >> >> > Does anyone have step by step on what has to be installed to get >> > radiusto work? I have installed libraries and env variable >and pkg's >> > for three days now and I an still getting errors. Is there >a list of >> > what needs to be installed before radius? Is there any samples of >> > the cofigure arguments anywhere? Help!!!!! >> > >> > George Schoggins >> > >> > >> > >> > - >> > List info/subscribe/unsubscribe? See >> > http://www.freeradius.org/list/users.html >> > > >- >List info/subscribe/unsubscribe? See >http://www.freeradius.org/list/users.html > - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
