Hi all sorry for my english i have an ldap server and a router cisco vpn 3600 séries. i want to configure my router in order to use my ldapserver but i don't know how i cant do this. Have you any ideas please ? i join a picture of my network diagram.
Regards, Uness
Hi all sorry for my english i have an ldap server and a router cisco vpn 3600 séries. i want to configure my router in order to use my ldapserver but i don't know how i cant do this. Have you any ideas please ? i join a picture of my network diagram.
Regards, Uness
youness hsina Hi all sorry for my english i have an ldap server and a router cisco vpn 3600 séries. i want to configure my router in order to use my ldapserver but i don't know how i cant do this. Have you any ideas please ?
You must check the capabilities of your Cisco router. It probably supports RADIUS authentication. If it does, you should install a RADIUS server that supports an LDAP backend. Both OpenRadius and FreeRadius are useful alternatives, and I am sure others will do the job as well.
Because you did not tell us the operating system on which you run your LDAP server, it's difficult to give more details.
Be prepared to read some RADIUS documentation so that the Cisco VPN router and the RADIUS server agree on what is expected and what is provided. Both of these are out of the scope of the OpenLDAP list.
Your system may also support TACACS+, which may be an optional mechanism. The approach will be almost the same, but you will need to figure out the necessary software (or get help from someone else on this or another list).
Good luck!
Thank Very much Bjorn for your help
I run my LDAP server on FreeBSD 7.0 .and my router supports RADIUS authentication.
the OpenRaduis must be installed in the same machine with OpenLdap or i need a second machine ? Best regards, Uness
You must check the capabilities of your Cisco router. It probably supports RADIUS authentication. If it does, you should install a RADIUS server that supports an LDAP backend. Both OpenRadius and FreeRadius are useful alternatives, and I am sure others will do the job as well.
Because you did not tell us the operating system on which you run your LDAP server, it's difficult to give more details.
Be prepared to read some RADIUS documentation so that the Cisco VPN router and the RADIUS server agree on what is expected and what is provided. Both of these are out of the scope of the OpenLDAP list.
Your system may also support TACACS+, which may be an optional mechanism. The approach will be almost the same, but you will need to figure out the necessary software (or get help from someone else on this or another list).
Good luck!
-- Bjørn
youness hsina wrote:
Thank Very much Bjorn for your help
I run my LDAP server on FreeBSD 7.0 .and my router supports RADIUS authentication.
the OpenRaduis must be installed in the same machine with OpenLdap or i need a second machine ?
You can probably run it on the same system as your OpenLDAP server, depending on system capacity of course. Depending on a separate physical unit adds another possible source for failures.
PS, please don't top post.
HI!
If this router supports LDAP (for authentication or authorization?) I'm pretty sure that its manual contains information how to configure that.
Ciao, Michael.
youness hsina wrote:
Hi all sorry for my english i have an ldap server and a router cisco vpn 3600 séries. i want to configure my router in order to use my ldapserver but i don't know how i cant do this. Have you any ideas please ? i join a picture of my network diagram.
Regards, Uness
Hi ! But how can i know that my router supports LDAP and where can i find its manual ? Thank you for Help Michael Best regards Uness
2008/5/13 Michael Ströder michael@stroeder.com:
HI!
If this router supports LDAP (for authentication or authorization?) I'm pretty sure that its manual contains information how to configure that.
Ciao, Michael.
youness hsina wrote:
Hi all sorry for my english i have an ldap server and a router cisco vpn 3600 séries. i want to configure my router in order to use my ldapserver but i don't know how i cant do this. Have you any ideas please ? i join a picture of my network diagram. Regards, Uness
youness hsina wrote:
But how can i know that my router supports LDAP and where can i find its manual ?
How about searching http://www.cisco.com for the manual?
Also for LDAP you should probably learn about LDAP searches (search root (also called base-DN), search scope, search filters) and bind requests. Ask your LDAP admin for the parameters.
Ciao, Michael.
openldap-technical@openldap.org
-
Bjørn Ruberg -
Michael Ströder -
youness hsina