Apologies – I have searched google unfruitfully for a solution, but I have failed ☹
I have an issue with a FreeRadius / FreeIPA setup and I’m struggling to find how to debug / tune or fix the issue. It’s a pretty simple one, but google fu fail.
Basically, FreeRadius is returning every now and again the following:
Tue Nov 10 21:32:38 2020 : Error: rlm_ldap (ldap): Bind was not permitted: Server was unwilling to perform
And the corresponding entry is in the dirsrv log:
[10/Nov/2020:21:32:38.780133776 +0000] conn=777962 fd=205 slot=205 connection from ::1 to ::1
[10/Nov/2020:21:32:38.780524927 +0000] conn=777962 op=0 BIND dn="uid=admin,cn=users,cn=accounts,dc=freeipa,dc=z,dc=net" method=128 version=3
[10/Nov/2020:21:32:38.781269853 +0000] conn=777962 op=0 RESULT err=53 tag=97 nentries=0 etime=0.000982345
[10/Nov/2020:21:32:38.781549696 +0000] conn=777962 op=1 UNBIND
[10/Nov/2020:21:32:38.781573368 +0000] conn=777962 op=1 fd=205 closed - U1
It eventually resolves, but for a period of time every now and again (it’s completely random as to the timing) FreeIPA will just stop talking to the Radius.
Network issues are not the problem, the Radius and LDAP are on the same server.
I’d love to know how to debug and fix this obviously – but a quick fix would also be nice 😊 FreeIPA is pretty much stock, we just upgrade it every once and a while.
Many thanks for any help.
Cheers,
Daniel