Project

General

Profile

Actions

Bug #15775

open

Freeradius + LDAP authentification conditions

Added by Lev Prokofev 2 months ago.

Status:
New
Priority:
Normal
Assignee:
-
Category:
FreeRADIUS
Target version:
-
Start date:
Due date:
% Done:

0%

Estimated time:
Plus Target Version:
Affected Version:
Affected Plus Version:
Affected Architecture:

Description

Probably I missed this part in the GUI, however, it looks like it was really not implemented.
If you going to authenticate users using FreeRadius with AD/LDAP backend you need conditions for authentication at /usr/local/etc/raddb/sites-enabled/default

Working example is

authorize {
    if (ok && User-Password) {
        update {
            control: Auth-Type := LDAP
        }
    }
}

authenticate {
    Auth-Type LDAP {
        ldap
    }
}

In this example:

The authorize section checks if the user credentials are valid.

If the credentials are valid ( ok && User-Password ), it sets the Auth-Type to LDAP.

The authenticate section then uses the ldap module to authenticate the user.

No data to display

Actions

Also available in: Atom PDF