LDAP and FreeRadius

Dev Shed Forums Sponsor:

April 8th, 2004, 08:14 PM

cleverpig

Contributing User

Join Date: Jul 2003

Posts: 1,152

Time spent in forums: < 1 sec
Reputation Power: 11

LDAP and FreeRadius

I'm a network developer..I'm developing a program managing user login-info for dialup users.And i use FreeRadius as my user authen program,use openldap as my user info DB..But i'm a newer into Ldap world,anyone can give me some advice about how to use ldap and FreeRadius(http://www.freeRadius.org)??

__________________
Being a Code Headman

April 12th, 2004, 11:04 AM

Viper_SB

Psycho Canadian

Join Date: Jan 2001

Location: Canada

Posts: 4,845

Time spent in forums: 1 Month 1 Day 20 h 16 m 27 sec
Reputation Power: 634

sorry never heard of or used freeraduis before

__________________
Miscellaneous Software
Viper_SB
Developershed E-Support

April 12th, 2004, 07:52 PM

cleverpig

Contributing User

Join Date: Jul 2003

Posts: 1,152

Time spent in forums: < 1 sec
Reputation Power: 11

Quote:

Originally Posted by Viper_SB

sorry never heard of or used freeraduis before

THX...I have try to debug it for my aim..

..Although it exists some difficult in my forward way..

May 12th, 2004, 10:23 AM

kwilley

TANSTAAFL

Join Date: Mar 2002

Location: chair

Posts: 164

Time spent in forums: 1 Day 23 h 14 m 46 sec
Reputation Power: 31

config radius.conf

Code:

        ldap {
                server = "x.x.x.x"
                port = 636
                identity= "cn=ldapuser,dc=domain,dc=com"
                password = ldapuser_pw
                basedn = "dc=domain,dc=com"
                #for ssl conns
                tls_cacertfile = /usr/local/ssl/cert/cert.pem
                #default filter = "(uid=%{Stripped-User-Name:-%{User-Name}})"
                #AD Filter
                filter = "(&(samaccountname=%{user-name}))"
                start_tls = no
                # default_profile = "cn=radprofile,ou=dialup,o=My Org,c=UA"
                # profile_attribute = "radiusProfileDn"
                # access_attr = "dialupAccess"

                # Mapping of RADIUS dictionary attributes to LDAP
                # directory attributes.
                dictionary_mapping = ${raddbdir}/ldap.attrmap
                ldap_connections_number = 5
                # password_header = "{clear}"
                # password_attribute = userPassword
                # groupname_attribute = cn
                # groupmembership_filter = "(|(&(objectClass=GroupOfNames)(member=%{Ldap-UserDn}))(&(objectClass=GroupOfUniqueNames)(uniquemember=%{Ldap-UserDn})))"
                # groupmembership_attribute = radiusGroupName
                timeout = 5
                timelimit = 10
                net_timeout = 5
                # compare_check_items = yes
                # access_attr_used_for_allow = yes
        }

May 12th, 2004, 07:48 PM

cleverpig

Contributing User

Join Date: Jul 2003

Posts: 1,152

Time spent in forums: < 1 sec
Reputation Power: 11

THX,Kwilley！I had lost my mind for get this help!!.I will try it!Do U give me a ldap segment in radius configure?..Can u give me ldap configure?Because i don't know this relation between ladp configure and radius configure..After i setup the radius configure,how i will setup ldap configure(I know how to setup ldap configure!:-))..Can u give me some advice?PLz reply it..THX again!

May 13th, 2004, 08:31 AM

kwilley

TANSTAAFL

Join Date: Mar 2002

Location: chair

Posts: 164

Time spent in forums: 1 Day 23 h 14 m 46 sec
Reputation Power: 31

I posted the ldap section of the freeradius config.

The radius server is simply an interface between your program and your ldap directory.

I'm not a ldap guru as we only use it to query our W2K AD servers...

LDAP and FreeRadius

Developer Shed Advertisers and Affiliates