Freeradius access over ldap: Unterschied zwischen den Versionen
Zur Navigation springen
Zur Suche springen
| (Eine dazwischenliegende Version desselben Benutzers wird nicht angezeigt) | |||
| Zeile 2: | Zeile 2: | ||
*cd /etc/freeradius/3.0/mods-enabled | *cd /etc/freeradius/3.0/mods-enabled | ||
*ln -s ../mods-available/ldap . | *ln -s ../mods-available/ldap . | ||
| + | =Certpath= | ||
| + | /etc/freeradius/3.0/certs | ||
| + | |||
=Config ldap= | =Config ldap= | ||
*cat /etc/freeradius/3.0/mods-enabled/ldap | *cat /etc/freeradius/3.0/mods-enabled/ldap | ||
| − | server = 'waka.xinux.lan' | + | server = 'ldaps://waka.xinux.lan' |
identity = 'cn=admin,dc=xinux,dc=lan' | identity = 'cn=admin,dc=xinux,dc=lan' | ||
password = sysadm | password = sysadm | ||
| + | ... | ||
base_dn = 'dc=xinux,dc=lan' | base_dn = 'dc=xinux,dc=lan' | ||
| + | tls { | ||
| + | start_tls = yes | ||
| + | ca_file = ${certdir}/xin-ca.crt | ||
| + | certificate_file = ${certdir}/caprica.xinux.lan.crt | ||
| + | private_key_file = ${certdir}/caprica.xinux.lan.key | ||
| + | } | ||
| + | ... | ||
Aktuelle Version vom 5. Dezember 2018, 12:17 Uhr
Enable ldap
- cd /etc/freeradius/3.0/mods-enabled
- ln -s ../mods-available/ldap .
Certpath
/etc/freeradius/3.0/certs
Config ldap
- cat /etc/freeradius/3.0/mods-enabled/ldap
server = 'ldaps://waka.xinux.lan'
identity = 'cn=admin,dc=xinux,dc=lan'
password = sysadm
...
base_dn = 'dc=xinux,dc=lan'
tls {
start_tls = yes
ca_file = ${certdir}/xin-ca.crt
certificate_file = ${certdir}/caprica.xinux.lan.crt
private_key_file = ${certdir}/caprica.xinux.lan.key
}
...