After more research yet again (google/ oriellys/ FR mailing list archives) I "think" its one of these 2 scenarios.
1 - Anonymous Searches in Active Directory isnt working 2 - When I set: # identity = "cn=root,o=tfxschool,c=AU" # password = pass the password should be encrypted. I have tried slappasswd but to no avail. oreillys showed me the anonymous way (which fails quite possibly due to win2k3 permissions) and the gentoo 1 actually shows u how to enable Anonymous Searches in Active Directory on windows 2000. So yes, def ldap atm not FR. I will post a seperate request asking about FR + win2k3 Allowing Anonymous Searches in Active Directory. Gentoo howto: http://gentoo-wiki.com/HOWTO_Adding_a_Samba_Server_into_an_existing_AD_Domain On 4/19/07, Alan DeKok <[EMAIL PROTECTED]> wrote: > Jacob Jarick wrote: > > I have been pouring through the oreillys LDAP book (quite informative > > so far to btw). I got the example of using freeradius against the > > linux passwd file working fine. I tried their Freeradius and OpenLDAP > > (now I know ADS isnt OpenLDAP btw) and it fails with the following > > message: rlm_ldap: ldap_search() failed: Operations error > > That's an internal LDAP error saying "something went wrong", and it > can't be more specific than that. I'm not sure what to suggest. > > > If some1 else has a working radius setup that auths againts AD using > > LDAP would they mind sending me the ldap { } section, would be very > > handy to compare my config to a working one. > > Google is your friend: "freeradius ldap active directory" > > http://lists.cistron.nl/pipermail/freeradius-users/2004-August/035046.html > > Alan DeKok. > -- > http://deployingradius.com - The web site of the book > http://deployingradius.com/blog/ - The blog > - > List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html > - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
