Probably I didn't phrase my question right earlier. As we now know that Freeradius
server can act as a middle man to the authentication from the rsa security
server, has some one implied this scenario before. If you have done so, how
would I set it up in clients file after enabling the proxy server setup?
Thank you all for all your helpful input.
Choudary.
[EMAIL PROTECTED] wrote:
Send Freeradius-Users mailing list submissions to
[EMAIL PROTECTED]
To subscribe or unsubscribe via the World Wide Web, visit
http://lists.cistron.nl/mailman/listinfo/freeradius-users
or, via email, send a message with subject or body 'help' to
[EMAIL PROTECTED]
You can reach the person managing the list at
[EMAIL PROTECTED]
When replying, please edit your Subject line so it is more specific
than "Re: Contents of Freeradius-Users digest..."
Today's Topics:
1. Re: RSA security server token authentication ("
Today's Topics:
1. Re: RSA security server token authentication ([EMAIL PROTECTED])
2. Oracle database failover (Sally Fetouh)
3. Re: Auth-type=Accept (Simon White)
4. Check Users File (Norbert Wegener)
5. Radiusd Problems (Srinivasa Rao Mannava)
6. Re: Auth-type=Accept (leaobicalho)
7. Re:RSA security server token authentication (leaobicalho)
8. Re: Regexp in huntgroups file (Alexander M. Pravking)
9. ?? (giorgio)
10. bind to ldap server only (no search) (David De Maeyer)
11. Re: bind to ldap server only (no search) (Kostas Kalevras)
12. control (or garbage) characters in username (Alexis C. Villalon)
--__--__--
Message: 1
To: [EMAIL PROTECTED]
Subject: Re: RSA security server token authentication
From: [EMAIL PROTECTED]
Date: Wed, 22 Jan 2003 00:16:13 -0600
Reply-To: [EMAIL PROTECTED]
Actually, that you _can_ do. I personally detest the radius server that
is built into ACE and refuse to use it in any manner, either as the target
of a proxy or as the direct client target. But there's no reason why you
_couldn't_ do exactly what you describe with FR and and an ACE server.
Vincent Giovannone
Network Infrastructure Group
Information Services Division
Rush - Presbyterian St. Luke's Medical Center
"So for the IT Manager Role, you want someone who's absolute crap, looks
reasonable on paper, and won't cause too much trouble. ... Well I don't
have any MCSEs on my books at the moment, but I could call around."--
Simon Travaglia
Choudary Asad Mumtaz [EMAIL PROTECTED]
Sent by: [EMAIL PROTECTED]
01/21/03 09:35 PM
Please respond to freeradius-users
To: [EMAIL PROTECTED]
cc:
Subject:Re: RSA security server token authentication
Hi Vincent and Alan,
Thank you very much for your quick response. I was
under the impression that by turning on the proxy requests feature, it
could send requests to the rsa security server. As freeradius doesn't has
this feature, does someone has another free solution to the problem :).
Thank you.
Choudary.
--__--__--
Message: 2
Date: Wed, 22 Jan 2003 11:21:42 +0400
From: Sally Fetouh [EMAIL PROTECTED]
Subject: Oracle database failover
To: [EMAIL PROTECTED]
Reply-To: [EMAIL PROTECTED]
Hi,
We're currently using an Oracle database with freeradius. We had a concern
with database failover and redundancy issues. One issue was if the database
was down freeradius should be directed to another one - bearing in mind that
freeradius and the database are on different machines. This was done
succesfully through the sql.conf file and is working fine. The other issue
we had was if the network connection between the freeradius server machine
and the database machine is down, freeradius should still be redirected to
an alternative database. Has anyone found a way of doing this, again through
freeradius configuration files?
thanks in advance,
Sally Fetouh
--__--__--
Message: 3
Date: Wed, 22 Jan 2003 09:21:51 +
From: Simon White [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Subject: Re: Auth-type=Accept
Reply-To: [EMAIL PROTECTED]
21-Jan-03 at 16:57, leaobicalho ([EMAIL PROTECTED]) wrote :
When I use Auth-type=Accept, i dont
need say password, authentic only by
login. But always radius client send
`login` in format STRING and not
encrypted.
I think that Password are encypted.
Then, How i authentic only by Password?
Read up about possible authentication methods that your NAS supports,
and work out which one will encrypt passwords.
If you authenticate only by password, how do you track users?