(RADIATOR) AuthBy LDAP2

Jason Signalness jsignalness at btinet.net
Wed Nov 6 12:50:05 CST 2002 

Hello,

I have resolved my issue.  We were rewriting the username, stripping off 
the Realm, and then trying to use %R.  %R must have been empty or 
something because the realm was stripped off.

Rather than using this:
UsernameAttr   uid

We now use this and skip the username rewriting altogether:
SearchFilter   (uid=%U)

So far, it seems to work just fine.

Thanks,
Jason

Hugh Irvine wrote:
> 
> Hello Jason -
> 
> Yes you can use special characters in the BaseDN parameter.
> 
> Could you please send me a copy of the configuration file (no secrets), 
> together with a trace 4 debug from Radiator showing what is happening.
> 
> BTW - what version of Radiator are you running, and what 
> hardware/software platform?
> 
> regards
> 
> Hugh
> 
> 
> On Wednesday, November 6, 2002, at 02:50 AM, Jason Signalness wrote:
> 
>> Hello,
>>
>> I have been trying to set up authentication against an LDAP directory.
>>
>> This clause results in LDAP_NO_SUCH_OBJECT errors:
>>
>> <AuthBy LDAP2>
>>         Identifier              BTICheckLDAP
>>         Host                    ds.btinet.net
>>         UsernameAttr            uid
>>         BaseDN                  ou=People,o=%R,o=bti
>>         EncryptedPasswordAttr   userPassword
>> </AuthBy>
>>
>> But if I hard code the realm name it works:
>>
>> <AuthBy LDAP2>
>>         Identifier              BTICheckLDAP
>>         Host                    ds.btinet.net
>>         UsernameAttr            uid
>>         BaseDN                  ou=People,o=testrealm.com,o=bti
>>         EncryptedPasswordAttr   userPassword
>> </AuthBy>
>>
>>
>> Since we have many realms, it is not going to work to hard code them 
>> in the radiator config file.  Am I correct to assume that the %R 
>> cannot be used in an AuthBy LDAP2 clause?  If so, how can I get around 
>> this?
>>
>> Thanks in advance,
>>
>> -- 
>> Jason Signalness, Systems Administrator
>> Basin Telecommunications, Inc.
>> jsignalness at btinet.net 1-701-355-5727
>> -- 
>>
>> ===
>> Archive at http://www.open.com.au/archives/radiator/
>> Announcements on radiator-announce at open.com.au
>> To unsubscribe, email 'majordomo at open.com.au' with
>> 'unsubscribe radiator' in the body of the message.
>>
>>
> 
> NB: I am travelling this week, so there may be delays in our 
> correspondence.
> 



-- 
Jason Signalness, Systems Administrator
Basin Telecommunications, Inc.
jsignalness at btinet.net 1-701-355-5727
--

===
Archive at http://www.open.com.au/archives/radiator/
Announcements on radiator-announce at open.com.au
To unsubscribe, email 'majordomo at open.com.au' with
'unsubscribe radiator' in the body of the message.

More information about the radiator mailing list