[RADIATOR] LDAP to RADIUS

Eddie Chu eddie.chu at netmon.com.hk
Fri Nov 28 21:29:59 CST 2008


Hi Hugh,

  The user repository of application is separated from the server system.  The application can talk to LDAP only.

  The main point is our application should authenticate to centralized RADIUS server, but it only support LDAP, so that why we are exploring app -> LDAP -> RADIUS.

Best Rgds,
Eddie Chu


-----Original Message-----
From:	Hugh Irvine [mailto:hugh at open.com.au]
Sent:	29/11/2008 [Sat] 11:13
To:	Eddie Chu
Cc:	radiator at open.com.au
Subject:	Re: [RADIATOR] LDAP to RADIUS


Hello Eddie -

You may be able to configure the LDAP server operating system to do  
PAM authentication and use a PAM to RADIUS application.

A Google search on "pam radius" give lots of useful hits.

regards

Hugh


On 29 Nov 2008, at 11:01, Eddie Chu wrote:

> Hi Hugh,
>
>  Our application cannot talk to RADIUS, but LDAP.  We want to  
> centralize the authentication to RADIUS.
>
> application login -> LDAP server -> RADIUS
>
>  Please advise!  Thanks!
>
>
> Best Rgds,
> Eddie Chu
>
>
> -----Original Message-----
> From:	Hugh Irvine [mailto:hugh at open.com.au]
> Sent:	29/11/2008 [Sat] 6:40
> To:	Eddie Chu
> Cc:	radiator at open.com.au
> Subject:	Re: [RADIATOR] LDAP to RADIUS
>
>
> Hello Eddie -
>
> I'm not sure I understand your question.
>
> Radiator is normally configured to process RADIUS requests and perform
> authentication against a list of usernames and passwords stored in
> some form of database.
>
> The user database can be LDAP, SQL, flat files, or whatever.
>
> If you want Radiator to query an LDAP database you should use the
> AuthBy LDAP2 clause.
>
> See "goodies/ldap.cfg" and section 5.36 in the Radiator 4.3.1
> reference manual ("doc/ref.pdf").
>
> regards
>
> Hugh
>
>
> On 29 Nov 2008, at 01:18, Eddie Chu wrote:
>
>> Dear Sir,
>>
>> 	Our application supports LDAP only, is there any way to route /
>> bridge / proxy LDAP to RADIUS server.
>>
>>
>>
>> Best Rgds,
>> Eddie Chu
>>
>> _______________________________________________
>> radiator mailing list
>> radiator at open.com.au
>> http://www.open.com.au/mailman/listinfo/radiator
>
>
>
> NB:
>
> Have you read the reference manual ("doc/ref.html")?
> Have you searched the mailing list archive (www.open.com.au/archives/radiator)?
> Have you had a quick look on Google (www.google.com)?
> Have you included a copy of your configuration file (no secrets),
> together with a trace 4 debug showing what is happening?
> Have you checked the RadiusExpert wiki:
> http://www.open.com.au/wiki/index.php/Main_Page
>
> -- 
> Radiator: the most portable, flexible and configurable RADIUS server
> anywhere. Available on *NIX, *BSD, Windows, MacOS X.
> Includes support for reliable RADIUS transport (RadSec),
> and DIAMETER translation agent.
> -
> Nets: internetwork inventory and management - graphical, extensible,
> flexible with hardware, software, platform and database independence.
> -
> CATool: Private Certificate Authority for Unix and Unix-like systems.
>
>
>
>
>



NB:

Have you read the reference manual ("doc/ref.html")?
Have you searched the mailing list archive (www.open.com.au/archives/radiator)?
Have you had a quick look on Google (www.google.com)?
Have you included a copy of your configuration file (no secrets),
together with a trace 4 debug showing what is happening?
Have you checked the RadiusExpert wiki:
http://www.open.com.au/wiki/index.php/Main_Page

-- 
Radiator: the most portable, flexible and configurable RADIUS server
anywhere. Available on *NIX, *BSD, Windows, MacOS X.
Includes support for reliable RADIUS transport (RadSec),
and DIAMETER translation agent.
-
Nets: internetwork inventory and management - graphical, extensible,
flexible with hardware, software, platform and database independence.
-
CATool: Private Certificate Authority for Unix and Unix-like systems.








More information about the radiator mailing list