Re: [Lam-public] LDAP/FreeRadius configuration and integration throught LAM Module

Wed, 21 Jun 2023 10:52:29 -0700

Hello. I was eventually able to integrate Freeradius with LAM. I'm immensely grateful to Roland Gruber for the valuable tip. I hope the steps below can help others too. Thanks! 

Virtual environment:
Debian: 11 (bullseye)
OpenLDAP: 2.4.57
FreeRadius: 3.0.21
LDAP Account Manager: 8.0.1

1. Unzip the "freeradius.ldif" file
# gunzip /usr/share/doc/freeradius/schemas/ldap/openldap/freeradius.ldif.gz
2. Copy all the Freeradius ".ldif" and ".schema" files to the "/etc/ldap/schema" dir # cp /usr/share/doc/freeradius/schemas/ldap/openldap/freeradius* /etc/ldap/schema/
3. Copy all ".ldif" files to the "/etc/ldap/slapd.d/cn=config/cn=schema/" dir # cp /usr/share/doc/freeradius/schemas/ldap/openldap/freeradius*.ldif /etc/ldap/slapd.d/cn=config/cn=schema/
4. Append the "include" lines at the end of the "/etc/ldap/ldap.conf" file 
include /etc/ldap/schema/freeradius.schema
include /etc/ldap/schema/freeradius-clients.schema
5. Add all "freeradius.ldif" and "freeradius-clients.ldif" file data to the LDAP internal database # ldapadd -Y EXTERNAL -H ldapi:/// -f /etc/ldap/slapd.d/cn=config/cn=schema/freeradius.ldif # ldapadd -Y EXTERNAL -H ldapi:/// -f /etc/ldap/slapd.d/cn=config/cn=schema/freeradius-clients.ldif 

6. Restart the LDAP Server
# systemctl restart slapd

7. Check if the LDAP Server is running
# systemctl status slapd
8. Check if all Freeradius ".ldif" data has been added to the LDAP internal database 
# ldapsearch -H ldapi:/// -Y EXTERNAL -b 'cn=config'

Carlos A. H. Júnior

Em 06/06/2023 08:35, Carlos Júnior escreveu:


Hi everyone.

I need to configure the "radiusprofile" so that it works in LAM.
I've read the old messages about "setting radiusprofile attributes in LAM profiles", and I read the LAM module documentation on this as well. I concluded that I need to configure the LDAP and FreeRadius servers for integration with the LAM module to work. The problem is that in my research, I haven't found much about this and I need help.
What LDAP and FreeRadius server files do I need to configure for this to work? Is there a "howto"?
I'm stuck at this, unable to make progress, and this is an important demand of the company where I work. 

Any help, tips, guidance, will be very welcome. I'm completely lost.

Thanks in advance.

Carlos A. H. Junior

_______________________________________________
Lam-public mailing list
Lam-public@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/lam-public
_______________________________________________
Lam-public mailing list
Lam-public@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/lam-public






















					Reply via email to