Sylvain MASNADA wrote:
OK, thanks.It is not so much a matter of understanding the "RADIUS-LDAPv3 schema" as it is understanding the meaning of the check and reply RADIUS attributes that can be stored in LDAP (v3 or v2 schema). To this end simply find the RADIUS attriubtes you are interested in setting (reply items to the NAS) and checking (check items you want RADIUS to check before authenticating), look over raddb/ldap.attrmap and doc/RADIUS-LDAPv3.schema to see how you store those RADIUS attributes in LDAP.
But just my first question was answered. Please answer the others.
(for the clients for exemple, even newbies can answer)
Thx again
Sylvain
----- Original Message ----- From: "Dustin Doris" To: Sent: Tuesday, June 17, 2003 3:49 PM
Subject: Re: freeradius and openldap
They are radius attributes, check out http://www.freeradius.org/rfc/rfc2865.html
Read the RFC, it will tell you about those attributes as well as explain what radius does.
On Tue, 17 Jun 2003, [iso-8859-1] Sylvain MASNADA wrote:
Hi all,to know exactly the fields' signification.
I'd like to know where I could find a good doc on the RADIUS-LDAPv3.schema
As far as what each of the RADIUS attributes means in total, well, that is a job for the RFC and other RADIUS doc recommended.
I don't know anything about this.
I filled the field radiusPrompt in openldap with 'hello' but when an userauthenticate himself he doesn't see any prompt.
?? client? You mean RADIUS client or LDAP client? RADIUS comes with a free client -- radtest. LDAP (OpenLDAP) comes with free clients -- ldapsearch, ldapmodify... I'm not sure what you mean here.
I'd like to know too, which free client do you use on linux, with its
advantages and disavantages, if possible. I've difficulties to made them well-work on this platform. (I tried Xsupplicant and Aegis -trial beta version-)
I do not believe there is any hope of this with RADIUS alone. It is possible to have your NAS transparently proxy port 80 to a web server of your choice making the first web page they viewed your page. This would require settings on your specific NAS, configuring the web server, and seeing what capability your NAS had for ending this transparent proxy after your page was hit. I know there are commercial solutions to this problem too.
Finally I'd like to know if it's possible to join a file in the freeradius
response to the client, to be stored on the client machine or to open a web page on the client screen thanks Freeradius.
Finally, it is possible, although I know NOTHING about it, that a RADIUS reply to the NAS could affect the transparent proxying of port 80 that your NAS _MAY_ be able to do.
Thanks in advance. Your help will be well-appreciated.
Sylvain
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
___________________________________________________________ Do You Yahoo!? -- Une adresse @yahoo.fr gratuite et en français ! Yahoo! Mail : http://fr.mail.yahoo.com
- List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
- List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
