Hello Steve (and others interested in LDAP) -
Further to my previous posting, Mike has added support for a complete search
definition in a patched version of AuthBy LDAP2 for Radiator 2.16.1.
Steve - would you be interested in testing this for us prior to it being
included in the next release? It does mean that you will have to upgrade to
2.16.1 before you can use it.
many thanks
Hugh
On Fri, 07 Jul 2000, Felicetti, Stephen A. wrote:
>
> Running Radiator 2.15 under Sun OS 5.6 against Netscape LDAP 3.11, Cisco
> AS5300 as the access server.
>
> I'm using the AuthAttrDef function to limit those that can have access to
> our system after connecting to the AS.
> As long as the altmail5 attribute exists in the user's entry, I can permit
> or deny access by assigning the appropriate value (being equal to
> NAS-Port-Type). Works just fine like that....however to my dismay, I just
> realised that if the attribute DOESN'T exist, it isn't checked and access is
> granted for that user regardless if I want them to get in, or not (obviously
> as long as the password is OK). Can't I have it so that if the attribute
> doesn't exist, it boots them out of the system?
>
> I was hoping to just add the attribute to the people that I want dialing in.
> Instead, will I have to add it to the thousands of users we have in the
> directory, then giving those people a value that will never match
> NAS-Port_Type? Get my drift?
>
> Thanks guys!!!!
> Steve
>
>
>
>
> <AuthBy LDAP2>
> Host xxxxxxx
> Port xxx
> AuthDN uid=admin,o=Fox Chase Cancer Center,c=US
> AuthPassword xxxxxxxx
> BaseDN o=Fox Chase Cancer Center, c=US
> UsernameAttr uid
> PasswordAttr userpassword
> AuthAttrDef altmail5,NAS-Port-Type,check
> </AuthBy>
>
>
>
>
>
> ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
> Stephen A. Felicetti Sr. Network Engineer
> mailto:[EMAIL PROTECTED] Fox Chase Cancer Center
> 215-728-2956 (v) *Institute for
> Cancer Research*
> 215-728-2513 (f)
> ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
>
>
----------------------------------------
Content-Type: application/octet-stream; name="Stephen Felicetti (E-mail).vcf"
Content-Transfer-Encoding: 7bit
Content-Description:
----------------------------------------
--
Radiator: the most portable, flexible and configurable RADIUS server
anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald,
Platypus, Freeside, Interbiller, TACACS+, PAM, external, etc, etc.
Available on Unix, Linux, FreeBSD, Windows 95/98/2000, NT, MacOS X.
===
Archive at http://www.starport.net/~radiator/
Announcements on [EMAIL PROTECTED]
To unsubscribe, email '[EMAIL PROTECTED]' with
'unsubscribe radiator' in the body of the message.
