Freeradius access over ldap: Unterschied zwischen den Versionen
Zur Navigation springen
Zur Suche springen
| Zeile 4: | Zeile 4: | ||
=Config ldap= | =Config ldap= | ||
*cat /etc/freeradius/3.0/mods-enabled/ldap | *cat /etc/freeradius/3.0/mods-enabled/ldap | ||
| − | server = 'waka.xinux.lan' | + | server = 'ldaps://waka.xinux.lan' |
identity = 'cn=admin,dc=xinux,dc=lan' | identity = 'cn=admin,dc=xinux,dc=lan' | ||
password = sysadm | password = sysadm | ||
| + | ... | ||
base_dn = 'dc=xinux,dc=lan' | base_dn = 'dc=xinux,dc=lan' | ||
| + | tls { | ||
| + | start_tls = yes | ||
| + | ca_file = ${certdir}/xin-ca.crt | ||
| + | certificate_file = ${certdir}/caprica.xinux.lan.crt | ||
| + | private_key_file = ${certdir}/caprica.xinux.lan.key | ||
| + | } | ||
| + | ... | ||
Version vom 5. Dezember 2018, 12:16 Uhr
Enable ldap
- cd /etc/freeradius/3.0/mods-enabled
- ln -s ../mods-available/ldap .
Config ldap
- cat /etc/freeradius/3.0/mods-enabled/ldap
server = 'ldaps://waka.xinux.lan'
identity = 'cn=admin,dc=xinux,dc=lan'
password = sysadm
...
base_dn = 'dc=xinux,dc=lan'
tls {
start_tls = yes
ca_file = ${certdir}/xin-ca.crt
certificate_file = ${certdir}/caprica.xinux.lan.crt
private_key_file = ${certdir}/caprica.xinux.lan.key
}
...