[RADIATOR] bind address LDAP queries
Mike McCauley
mikem at open.com.au
Tue Oct 5 19:38:16 CDT 2010
Hello Roel,
thanks for the suggestion.
We have now updated Ldap.pm with support for BindAddress in all Ldap derived
clauses, allowing you to
specify a local address for the client side of the LDAP connection with
BindAddress, in the form hostname[:port]. Defaults to 0.0.0.0.
The change is now in the latest patch set.
Hope that helps.
Cheers.
On Tuesday 05 October 2010 10:34:56 pm Roel Hoek wrote:
> Hi,
>
> We are in a process to transfer our radius services onto new hardware.
> On the old platform (SuSe with Radiator 3.17.1 ) the source address for
> LDAP-queries to an external host is the first bind-address listed in the
> 'BindAddress' in the config file, and this is the primary address of the
> host.
>
> On the new system (Ubuntu) Radiator (4.7) doesn't use a source-address
> listed in 'BindAddress' in the config file for LDAP-queries. In this
> case the source address is the last defined secondary address on the host.
> So I think it was just an coincidence that the source address for
> LDAP-queries is listed in the config file?
>
> How does radiator selects an source address for LDAP-queries? Is it
> possible to define it within the config? It is important for us that the
> source address is fixed because of firewall settings.
>
> Attributes LocalAddress or BindAddress are not supported within an
> AuthBy LDAP2 clause.
--
Mike McCauley mikem at open.com.au
Open System Consultants Pty. Ltd
9 Bulbul Place Currumbin Waters QLD 4223 Australia http://www.open.com.au
Phone +61 7 5598-7474 Fax +61 7 5598-7070
Radiator: the most portable, flexible and configurable RADIUS server
anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald,
Platypus, Freeside, TACACS+, PAM, external, Active Directory, EAP, TLS,
TTLS, PEAP, TNC, WiMAX, RSA, Vasco, Yubikey, MOTP, HOTP, TOTP,
DIAMETER etc. Full source on Unix, Windows, MacOSX, Solaris, VMS, NetWare etc.
More information about the radiator
mailing list