[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: additional info: dialup Access: attribute description contains inappropriate characters


I think you have your versions wrong.  You could be using openldap 1.9, if
so you need to upgrade.  Freeradius is just in the process of releasing
1.0 so I'm not sure where you got 1.148.

Anyway, if you just have your versions wrong and are really using openldap
and freeradius, then you can find more info on how to use ldap and freeradius

http://www.freeradius.org/radiusd/doc/ldap_howto.txt  (text only)
http://www.doris.cc/radius (html and text)

Basically, you need to take the freeradius supplied schema file and
include it into your slapd.conf file.  The file is named
RADIUS-LDAPv3.schema.  Read and follow the instructions, they will show
you how to do it.

You can see the correct name of the attribute (dialupAccess) by looking in
the schema file.

Hope that is helpful.

Dusty Doris

On Wed, 21 Jul 2004, Spenser Clark wrote:

> I have set up LDAP (v 1.9) and FreeRADIUS(v, I have set(in the
> FreeRADIUS config):
>                 access_attr_used_for_allow = yes
> with
>                 access_attr = "dialupAccess"
> I am now unsure as to how to set the dialupAccess attribute in the .ldif
> files, this is the result:
> ldapadd -D "cn=Manager,dc=bnet,dc=org" -Wc -f /tmp/test.ldif
> Enter LDAP Password:
> adding new entry "cn=dialup yes,ou=dialup,dc=bnet,dc=org"
> ldapadd: update failed: cn=dialup yes,ou=dialup,dc=bnet,dc=org
> ldap_add: Undefined attribute type (17)
>         additional info: dialup Access: attribute type undefined
> ------------------------------------------
> and the ldif file:
> dn: cn=dialup yes,ou=dialup,dc=bnet,dc=org
> cn: dialup yes
> gn: dialup
> sn: yes
> physicalDeliveryOfficeName: ncc
> objectclass: top
> objectclass: person
> objectclass: organizationalPerson
> objectclass: inetOrgPerson
> dialup Access: true
> uid: dialup
> userPassword: testdialup
> -----------------------------------------------------------------
> The same error occurs regardless of if it's "dialupAccess" or "dialup
> Access"
> Thanks much,
> -Spenser Clark
> BeachNet Manager
> c/o 2006
> spenser@bnet.org