Hello! MS-CHAPv2/EAP/LEAP support in FreeRadius caught my eye recently, and I started to consider replacing XTRadius with FreeRadius on my company's system. Currently I do everything (authentication, authorization and accounting) by external scripts, with custom MySQL database in the background that holds all the information and flags for ADSL/VPN accounts.
What I need from FR for the beginning is exactly the same functionality I already have
developed with XTR, which seems _very_ possible except one detail that I seem unable
to figure out - getting plaintext passwords stored in custom MySQL database (somehost,
somedb, sometable, somefield). In other words, I need to authenticate users using
existing MySQL DB, and call my own script for checking all other parameters.
Can anyone give me at least a hint on how to acomplish this? As I understand,
Auth-Type "External" doesn't exist in FR, so it has to take over authentication
process from my script and, hopefully, enhance it with support for additional
authentication protocols. :-)
My current XTR users file is as follows:
(Script "proc_check" currently takes care of username/password verification for PAP
and CHAP.)
==================================================================================
DEFAULT Auth-Type = External
Fall-Through = Yes
DEFAULT Simultaneous-Use = 1
Fall-Through = Yes
DEFAULT Acct-Status-Type = "Start"
Exec-Program-Account = "/path/to/proc_start %u"
DEFAULT Acct-Status-Type = "Stop"
Exec-Program-Account = "/path/to/proc_stop %u"
DEFAULT Acct-Status-Type = "Alive"
Exec-Program-Account = "/path/to/debug update"
DEFAULT
Exec-Program-Wait = "/path/to/proc_check %u"
==================================================================================
--
Best Regards,
Sinisa Burina
smime.p7s
Description: S/MIME cryptographic signature
