[Serusers] RADIATOR + LDAP +SER

Alan Baker abaker at cliquecom.com
Mon Nov 28 21:02:18 CET 2005 

I configured SER for authentication through RADIATOR to LDAP. I am kind of
stumped in regards to the User-Name attribute that is given to the Radius
server with the realm attached. Is there a way to send only the username
portion? I have included the output from debug. I would appropriate any
information.

Thanks,
Alan
--------------------------------------------------------------------------


Mon Nov 28 14:32:44 2005: DEBUG: Reading dictionary file
'/etc/radiator/dictionary'
Mon Nov 28 14:32:44 2005: DEBUG: Creating authentication port 0.0.0.0:1645
Mon Nov 28 14:32:44 2005: DEBUG: Creating accounting port 0.0.0.0:1646
Mon Nov 28 14:32:44 2005: NOTICE: Server started: Radiator 3.13 on sip
(LOCKED)
Mon Nov 28 14:32:51 2005: DEBUG: Packet dump:
*** Received from 127.0.0.1 port 33032 ....
Code:       Access-Request
Identifier: 247
Authentic:  <210>E<8>@m<211>h<133><34><23><16><21><28><242><187><154>
Attributes:
        User-Name = "alan at sip.domain.com"
        Digest-Attributes = "<10><6>alan"
        Digest-Attributes = "<1><19>sip.domain.com"
        Digest-Attributes = "<2>*438b5c8fa0ca1bassjsjskakad74ec2c2bd0"
        Digest-Attributes = "<4><23>sip:sip.domain.com"
        Digest-Attributes = "<3><10>REGISTER"
        Digest-Response = "c469a2464876sska898jkdsjs889"
        Service-Type = Sip-Session
        Sip-Uri-User = "alan"
        NAS-IP-Address = UNKNOWN
        NAS-Port = 5060
 
Mon Nov 28 14:32:51 2005: DEBUG: Handling request with Handler
'Realm=DEFAULT'
Mon Nov 28 14:32:51 2005: DEBUG:  Deleting session for alan at sip.domain.com,
UNKNOWN, 5060
Mon Nov 28 14:32:51 2005: DEBUG: Handling with Radius::AuthLDAP2: 
Mon Nov 28 14:32:51 2005: INFO: Connecting to ldap.domain.com, port 389
Mon Nov 28 14:32:51 2005: INFO: Attempting to bind to LDAP server
ldap.domain.com:389
Mon Nov 28 14:32:51 2005: ERR: ldap search failed with error
LDAP_PARAM_ERROR.
Mon Nov 28 14:32:51 2005: ERR: LDAP_PARAM_ERROR
Mon Nov 28 14:32:51 2005: DEBUG: Radius::AuthLDAP2 looks for match with
alan at sip.domain.com
Mon Nov 28 14:32:51 2005: ERR: ldap search failed with error
LDAP_PARAM_ERROR.
Mon Nov 28 14:32:51 2005: ERR: LDAP_PARAM_ERROR
Mon Nov 28 14:32:51 2005: DEBUG: AuthBy LDAP2 result: REJECT, No such user
Mon Nov 28 14:32:51 2005: INFO: Access rejected for alan at sip.domain.com: No
such user
Mon Nov 28 14:32:51 2005: DEBUG: Packet dump:
*** Sending to 127.0.0.1 port 33032 ....
Code:       Access-Reject
Identifier: 247
Authentic:  <210>E<8>@m<211>h<133><34><23><16><21><28><242><187><154>
Attributes:
        Reply-Message = "Request Denied"

More information about the sr-users mailing list