Re: Unable to retrieve the authFilterId attribute from the openldap server

[Michael Ströder <michael@stroeder.com>]

Dieter Kluenter wrote:
> Navin <navin.kumar@freescale.com> writes:
> 
>> Issue:
>> -----
>> I installed the openldap server through debian package. ie. did NOT get the source.
>> Was able to add the record and display them.
>> ie. the slaptest worked fine and also could able to search the database with ldapsearch
>> command also.
>> [..] 
>> attributetype ( 1.3.6.1.4.1.3317.4.3.1.9
>>         NAME ( 'authFilterId' )
>>         DESC 'radiusSchema: authFilterId'
>>         EQUALITY  caseIgnoreIA5Match
>>         SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
>>         SINGLE-VALUE )
>>
>> objectclass ( 2.16.840.1.113730.3.2.222
>>     NAME 'auth'
>>     DESC 'Authentication database'
>>     SUP top
>>     STRUCTURAL
>>         MUST (
>>                 uid $ userPassword $ authFilterId))
> 
> Note that objectclass auth is structural.
>> LDAP ldif file: init.ldif
> [...]
>> dn: uid=fsmith,ou=people,dc=example,dc=com
>> objectClass: inetOrgPerson
>> objectClass: posixAccount
>> objectClass: shadowAccount
>> objectClass: radiusprofile
> 
> objectclass radiusprofile is unknown, this should be auth.

I'd strongly recommend to use exactly the schema file shipped with the
RADIUS server software. Is that FreeRADIUS? Then watch out file in
FreeRADIUS source distribution:

doc/examples/openldap.schema

Ciao, Michael.