This is a discussion on pppd with ldap-authentication - PPP ; I'm trying to get pppd to authenticate users using an LDAP directory. I've got pppd to execute a search, but it doesn't give any results. If I manually do a search, it works fine: [root@netfinity-linux loggbok]# ldapsearch -LL -H ldap://localhost ...
I'm trying to get pppd to authenticate users using an LDAP directory.
I've got pppd to execute a search, but it doesn't give any results.
If I manually do a search, it works fine:
[root@netfinity-linux loggbok]# ldapsearch -LL -H ldap://localhost
-b"ou=People,dc=prosap,dc=no" -x "(uid=henstoev)"
version: 1
dn: uid=henstoev,ou=People,dc=xxxxxx,dc=no
uid: henstoev
cn: henstoev
sn: henstoev
mail: henstoev@xxxxxx
objectClass: person
objectClass: organizationalPerson
objectClass: inetOrgPerson
objectClass: posixAccount
objectClass: top
objectClass: kerberosSecurityObject
objectClass: shadowAccount
shadowMax: 99999
shadowWarning: 7
krbName: henstoev@xxxxxx
loginShell: /bin/bash
uidNumber: 500
gidNumber: 500
homeDirectory: /home/henstoev
userPassword:: xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx=
shadowLastChange: 12422
I've got the following in /etc/ppp/chap-secrets:
* * &uid?(objectClass=posixAccount)?ou=People,dc=xxxxxx ,dc=no *
I thought this would work, but only this shows up in
/var/log/messages:
Jan 13 11:37:26 netfinity-linux pppd[24662]: LDAP Routine:Client
henstoev Server pptpd
Jan 13 11:37:26 netfinity-linux pppd[24662]: LDAP Search String:
(&(uid=henstoev)(objectClass=posixAccount))END
Jan 13 11:37:26 netfinity-linux pppd[24662]: attributes defined
Jan 13 11:37:27 netfinity-linux pppd[24662]: search issued
Jan 13 11:37:27 netfinity-linux pppd[24662]: No Match Found In
Directory
Jan 13 11:37:27 netfinity-linux pppd[24662]: LDAP Routine done.
Jan 13 11:37:27 netfinity-linux pppd[24662]: CHAP peer authentication
failed for remote host henstoev
Can anyone see what is wrong? I guess I have to change something in
/etc/ppp/chap-seacrets, but I don't know what.
Anyone?
--
Henning S
