(RADIATOR) password modification via radiator

Hugh Irvine hugh at open.com.au
Fri May 2 03:44:22 CDT 2008


Hello Michael -

How exactly do you want this to work?

Where are the "current" and "different" passwords stored?

You should be able to use cascaded AuthBy clauses for this:

# Realm or Handler

<Handler .....>

	AuthByPolicy ContinueUntilAccept

	<AuthBy ...>
		# check "current" password
		.....
	</AuthBy>

	<AuthBy ...>
		# check "different" password
		.....
	</AuthBy>

</Handler>

hope that helps

regards

Hugh


On 2 May 2008, at 07:34, Michael Shoemaker wrote:

> I saw an earlier thread talking about changing the password using  
> radiator,
> and the response was to change the password in the appropriate  
> file. I am
> wanting a way to do this via radiator. Let me explain it a bit.
>
> We have a new group of customers coming on from a different isp  
> (buyout) and
> we want it to be as seamless as possible.
>
> We want to be able to check vs their "current" password and if it  
> fails (which
> it should do) then it auths with a "different" password. if it  
> auths with
> that pw, we will note it in the logs and change the "different"  
> password with
> the "current" password. The key here is for the customer to never  
> know that
> their orig password was not correct to begin with.
>
> The logging of their current password isn't an issue, the issue is  
> getting
> them to auth using the "different" password.
>
> I see where a newer version of radiator could allow for this by using
> NoCheckPassword, but the version we are using is 2.18 and it  
> doesn't have
> this function. I was thinking of using some sort of preauth hook,  
> but am
> unsure how to change the password.
>
> --
> Archive at http://www.open.com.au/archives/radiator/
> Announcements on radiator-announce at open.com.au
> To unsubscribe, email 'majordomo at open.com.au' with
> 'unsubscribe radiator' in the body of the message.



NB:

Have you read the reference manual ("doc/ref.html")?
Have you searched the mailing list archive (www.open.com.au/archives/ 
radiator)?
Have you had a quick look on Google (www.google.com)?
Have you included a copy of your configuration file (no secrets),
together with a trace 4 debug showing what is happening?
Have you checked the RadiusExpert wiki:
http://www.open.com.au/wiki/index.php/Main_Page

-- 
Radiator: the most portable, flexible and configurable RADIUS server
anywhere. Available on *NIX, *BSD, Windows, MacOS X.
Includes support for reliable RADIUS transport (RadSec),
and DIAMETER translation agent.
-
Nets: internetwork inventory and management - graphical, extensible,
flexible with hardware, software, platform and database independence.
-
CATool: Private Certificate Authority for Unix and Unix-like systems.


--
Archive at http://www.open.com.au/archives/radiator/
Announcements on radiator-announce at open.com.au
To unsubscribe, email 'majordomo at open.com.au' with
'unsubscribe radiator' in the body of the message.


More information about the radiator mailing list