I have resolved my issue. We were rewriting the username, stripping off the Realm, and then trying to use %R. %R must have been empty or something because the realm was stripped off.
Rather than using this:
UsernameAttr uid
We now use this and skip the username rewriting altogether:
SearchFilter (uid=%U)
So far, it seems to work just fine.
Thanks,
Jason
Hugh Irvine wrote:
Hello Jason -
Yes you can use special characters in the BaseDN parameter.
Could you please send me a copy of the configuration file (no secrets), together with a trace 4 debug from Radiator showing what is happening.
BTW - what version of Radiator are you running, and what hardware/software platform?
regards
Hugh
On Wednesday, November 6, 2002, at 02:50 AM, Jason Signalness wrote:
Hello,NB: I am travelling this week, so there may be delays in our correspondence.
I have been trying to set up authentication against an LDAP directory.
This clause results in LDAP_NO_SUCH_OBJECT errors:
<AuthBy LDAP2>
Identifier BTICheckLDAP
Host ds.btinet.net
UsernameAttr uid
BaseDN ou=People,o=%R,o=bti
EncryptedPasswordAttr userPassword
</AuthBy>
But if I hard code the realm name it works:
<AuthBy LDAP2>
Identifier BTICheckLDAP
Host ds.btinet.net
UsernameAttr uid
BaseDN ou=People,o=testrealm.com,o=bti
EncryptedPasswordAttr userPassword
</AuthBy>
Since we have many realms, it is not going to work to hard code them in the radiator config file. Am I correct to assume that the %R cannot be used in an AuthBy LDAP2 clause? If so, how can I get around this?
Thanks in advance,
--
Jason Signalness, Systems Administrator
Basin Telecommunications, Inc.
[EMAIL PROTECTED] 1-701-355-5727
--
===
Archive at http://www.open.com.au/archives/radiator/
Announcements on [EMAIL PROTECTED]
To unsubscribe, email '[EMAIL PROTECTED]' with
'unsubscribe radiator' in the body of the message.
-- Jason Signalness, Systems Administrator Basin Telecommunications, Inc. [EMAIL PROTECTED] 1-701-355-5727 -- === Archive at http://www.open.com.au/archives/radiator/ Announcements on [EMAIL PROTECTED] To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message.
