(RADIATOR) LDAP question, non password authentication
Hugh Irvine
hugh at open.com.au
Wed Nov 7 19:30:59 CST 2001
Hello Mike -
At 20:00 -0700 01/11/7, Forbes Mike wrote:
>This question may be answered in the mail lists that I am sorting through.
>
>I am authenticating passwords through kerb5 with the perl mod in radius
>
><Realm DEFAULT>
> <AuthBy PAM>
> Service radiusd
> </AuthBy>
>
>
>What I need to do are additional LDAP lookups for a
>attributes.
OK
>Note, we will not be authenicating passwords to the LDAP
>server, just searching for attributes. It looks like I will have to use
>6.35.13 SearchFilter for this, am I correct?
Yes.
>And do I then have set a flag that is drops through more than one authby?
>I am thinking there would be the AuthBy PAM for the krb authentication and
>then the AuthByLDAP for the LDAP search?
>
>Am I on the right track here?
Yes. You can chain any number of AuthBy clauses together with an
AuthByPolicy, and you can also use multiple AuthBy GROUP's for more
complicated setups.
regards
Hugh
--
NB: I am travelling this week, so there may be delays in our correspondence.
Radiator: the most portable, flexible and configurable RADIUS server
anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald,
Platypus, Freeside, Interbiller, TACACS+, PAM, external, etc, etc.
Available on Unix, Linux, FreeBSD, Windows 95/98/2000, NT, MacOS X.
===
Archive at http://www.open.com.au/archives/radiator/
Announcements on radiator-announce at open.com.au
To unsubscribe, email 'majordomo at open.com.au' with
'unsubscribe radiator' in the body of the message.
More information about the radiator
mailing list