[RADIATOR] PAM - and EAP

Judy Angel J.Angel at herts.ac.uk
Wed Aug 27 16:21:03 CDT 2008


Hi
we have HostA sending a request to HostB which is a solaris server that 
uses PAM authentication,


HostA:#
<Realm domain>
   RewriteUsername      s/^([^@]+).*/$1/
   <AuthBy RADIUS>
     Host PAMxxxx
     Secret yyyyyy
   </AuthBy>
        # Log accounting to the detail file in LogDir
        AcctLogFileName %L/detail
</Realm>


HostB:
<Realm DEFAULT>
        # Authenticate from the PAM service called 'passwd'
        # see above for details. Need to be root to use that service
        <AuthBy PAM>
                Service Password
        </AuthBy>
</Realm>


That works very well on site. However when a remote user tries to 
authenticate user at domain with EAP it fails. How can the HostB be set up to 
authenticate both instances?

the debug output:
        User-Name = "jo3xx"
        EAP-Message = <2><2><0><22><1>jo3xx at domain
Wed Aug 27 15:42:55 2008: DEBUG:  Deleting session for jo3xx, 172.16.46.17, 
2152
Wed Aug 27 15:42:55 2008: INFO: Access rejected for jo3xx: Authentication 
failed:


thanks
Judy Angel
University of Hertfordshire



More information about the radiator mailing list