Hello! MS-CHAPv2/EAP/LEAP support in FreeRadius caught my eye recently, and I started to consider replacing XTRadius with FreeRadius on my company's system. Currently I do everything (authentication, authorization and accounting) by external scripts, with custom MySQL database in the background that holds all the information and flags for ADSL/VPN accounts.
What I need from FR for the beginning is exactly the same functionality I already have developed with XTR, which seems _very_ possible except one detail that I seem unable to figure out - getting plaintext passwords stored in custom MySQL database (somehost, somedb, sometable, somefield). In other words, I need to authenticate users using existing MySQL DB, and call my own script for checking all other parameters. Can anyone give me at least a hint on how to acomplish this? As I understand, Auth-Type "External" doesn't exist in FR, so it has to take over authentication process from my script and, hopefully, enhance it with support for additional authentication protocols. :-) My current XTR users file is as follows: (Script "proc_check" currently takes care of username/password verification for PAP and CHAP.) ================================================================================== DEFAULT Auth-Type = External Fall-Through = Yes DEFAULT Simultaneous-Use = 1 Fall-Through = Yes DEFAULT Acct-Status-Type = "Start" Exec-Program-Account = "/path/to/proc_start %u" DEFAULT Acct-Status-Type = "Stop" Exec-Program-Account = "/path/to/proc_stop %u" DEFAULT Acct-Status-Type = "Alive" Exec-Program-Account = "/path/to/debug update" DEFAULT Exec-Program-Wait = "/path/to/proc_check %u" ================================================================================== -- Best Regards, Sinisa Burina
smime.p7s
Description: S/MIME cryptographic signature