Extreme Networks

Tom10 · ‎12-17-2018

Is there any way to define which attribute the RADIUS server checks in an external LDAP server? It seems to be hitting the first one that it hits (NT passwd) rather than the userPassword attribute which has caused some odd problems.

Tom10 · ‎12-18-2018

That didn't work. It's still returning two passwords

samantha_lynn · ‎12-17-2018

Thank you for sending that over to me. By default when we set up an LDAP server in HiveManager, the predefined user group attribute is "radiusGroupName". If we changes this to "person", that should included userPassword.

Here is the mapping from openLDAP for reference- http://www.zytrax.com/books/ldap/ape/#person

To find this in the HiveManager we will want to go to Configure> Open the Network Policy> Open the SSID> Open/Create the Default Radius Server Group> Select Aerohive Radius Server> Switch to LDAP Server.

samantha_lynn · ‎12-17-2018

I haven't received the tech data yet, would you be able to send that again to communityhelp@aerohive.com?

Tom10 · ‎12-17-2018

Sent from Mail for Windows 10

samantha_lynn · ‎12-17-2018

Thank you. Were you able to get that tech data file?

To get tech data in HiveManager (formerly NG, cloud.aerohive.com):

Tools> Utilities> Get tech data> Check the box next to the device> Get tech data (blue button at the top of the page this time).

This guide reviews how to get tech data from the CLI of the AP in case that is more convenient:

https://thehivecommunity.aerohive.com/s/article/Collecting-Tech-Data-via-CLI

Extreme Networks

how to designate the password field used by LDAP AAA/RADIUS

how to designate the password field used by LDAP AAA/RADIUS