Thiago Gonzaga B. Galvão wrote: > The user will authenticates onto a freeradius server, it will refer to > external source kerberos, and kerberos will be configured with openldap > backend (the openldap server that i have). > > Is it possible??? Instead of freeradius directly authenticates to ldap, > it would pass by kerberos, and kerberos communicates with openldap... if > userame/passwork ok, the user will be authenticated and receive a > kerberos's ticket...
The user *cannot* receive a kerberos ticket via RADIUS. That is simply not possible. They will need to use normal username/password authentication only. Alan DeKok. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html