(RADIATOR) Ldap authentication

Hugh Irvine hugh at open.com.au
Mon Aug 16 21:36:50 CDT 2004


Hello Denis -

I will need to see a copy of your configuration file (no secrets)  
together with a more complete trace 4 debug showing the startup  
sequence and the request processing. And what error messages do you get  
on the LDAP server? And what LDAP server are you running? And what  
version of Radiator, Perl, and perl-ldap? And what operating system are  
you using?

A Google search on "LDAP_REFERRAL_LIMIT_EXCEEDED" yields many useful  
links.

regards

Hugh


On 16 Aug 2004, at 20:48, Denis Pavani wrote:

> Hi all, I'm trying to use LDAP authentication in a new installation.
> I tried ldap.cfg in goodies directory, usually working perfectly.
> This time I obtain an error I trapped debugging Net::Ldap.
> I suppose there is not a loop in ldap binding, but perhaps this  
> machine lacks a module or something similar.
> Any suggestion?
>
> thanks in advance.
> denis
>
> Mon Aug 16 12:24:45 2004: DEBUG: Handling request with Handler
> 'Realm=DEFAULT'
> Mon Aug 16 12:24:45 2004: DEBUG:  Deleting session for user at cineca.it,
> 127.0.0.1, 0
> Mon Aug 16 12:24:45 2004: DEBUG: Handling with Radius::AuthLDAP2:
> Mon Aug 16 12:24:45 2004: INFO: Connecting to 127.0.0.1, port 389
> Mon Aug 16 12:24:45 2004: INFO: Attempting to bind to LDAP server  
> 127.0.0.1:389)
> Net::LDAP=HASH(0x83aee90) sending:
>
> 30 37 02 01 01 60 32 02 01 02 04 22 63 6E 3D 4D 07...`2...."cn=M
> 61 6E 61 67 65 72 2C 6F 75 3D 70 65 6F 70 6C 65 removed,ou=people
> Mon Aug 16 12:24:45 2004: ERR: Could not bind connection with
> cn=removed,ou=people,o=CINECA,c=IT, password, error:
> LDAP_REFERRAL_LIMIT_EXCEEDED (server 127.0.0.1:389).
> Mon Aug 16 12:24:45 2004: ERR: Backing off from 127.0.0.1:389 for 600
> seconds.
>
> --  
> *********************************************************************** 
> *
> Denis Pavani
>
> CINECA    -    Comunicazioni e Sistemi Distribuiti
> NOC - Network Operations Center
>
> phone:+39 0516171953 / fax:+39 0516132198
> http://www.cineca.it
> *********************************************************************** 
> *
>  "Siamo pagati per adattarci, improvvisare e raggiungere lo scopo"
>   -- Gunny Highway
>
> --
> Archive at http://www.open.com.au/archives/radiator/
> Announcements on radiator-announce at open.com.au
> To unsubscribe, email 'majordomo at open.com.au' with
> 'unsubscribe radiator' in the body of the message.
>
>

NB: have you included a copy of your configuration file (no secrets),
together with a trace 4 debug showing what is happening?

-- 
Radiator: the most portable, flexible and configurable RADIUS server
anywhere. Available on *NIX, *BSD, Windows, MacOS X.
-
Nets: internetwork inventory and management - graphical, extensible,
flexible with hardware, software, platform and database independence.
-
CATool: Private Certificate Authority for Unix and Unix-like systems.

--
Archive at http://www.open.com.au/archives/radiator/
Announcements on radiator-announce at open.com.au
To unsubscribe, email 'majordomo at open.com.au' with
'unsubscribe radiator' in the body of the message.


More information about the radiator mailing list