[prev in list] [next in list] [prev in thread] [next in thread] 

List:       freeradius-users
Subject:    Re: FR 3.0.13, reply of attributes missing
From:       Alan DeKok <aland () deployingradius ! com>
Date:       2019-02-26 12:02:30
Message-ID: D10D1AF7-0E8B-4DC8-BF15-707F2299EA58 () deployingradius ! com
[Download RAW message or body]

On Feb 26, 2019, at 4:31 AM, Jürgen Northe <jn@northe-online.de> wrote:
> I want to pass VLAN settings from ldap entry to the NAS (HP 5120 Switch) but I only \
> get the "Reply-Message" back. The same with "users". The system is a CentOS \
> 7.6.1810 and from Distro view up to date. I have read the ldap modue config and \
> tried settings like below but did not succeed. So I tried it with an user entry, \
> same result. Is there a main switch in an other config file I might have to set \
> additionally?  

  No.

> #       valuepair_attribute = 'radiusAttribute'
> #       control:Auth-Type             := 'AuthType'
> #       reply:Tunnel-Type             := 'radiusTunnelType'
> #       reply:Tunnel-Medium-Type      := 'radiusTunnelMediumType'
> #       reply:Tunnel-Private-Group-ID := 'radiusTunnelPrivategroupId'
> 
> mac     Cleartext-Password == "mac"
> Tunnel-Type = "VLAN",
> Tunnel-Medium-Type = "IEEE-802",
> Tunnel-Private-Group-Id = "170"

  Which line of the "users" file is that on?  Because the debug log is pretty clear:

> (0) files: users: Matched entry DEFAULT at line 201

  Is the entry you added at line 201?

> (0) ldap1: Performing search in "dc=compend,dc=com" with filter \
> "(cn=001f161eeb3a)", scope "sub" (0) ldap1: Waiting for search result...
> (0) ldap1: User object found at DN \
> "cn=NBIVX200S-44,cn=proxmox,cn=192.168.5.0,cn=SUBNET,cn=DHCP \
> Config,dc=compend,dc=com" (0) ldap1: Processing user attributes
> (0) ldap1: reply:Reply-Message := 'Hello NBIV-LENO-X200S'
> rlm_ldap (ldap1): Released connection (0)

  That's pretty clear.  There's only the Reply-Message in LDAP for the user.

  Alan DeKok.


-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html


[prev in list] [next in list] [prev in thread] [next in thread]