Hello!
I am trying to set up a simple Wlan-authentication using EAP-TTLS to
avoid client certificates and PAM to use the server system
authentication scheme. PAM doesn't know about users, and the users are
situated in a LDAP database, which I think makes it logical to use
rlm_ldap for
The problem is that PAM is never used. This seems to be an artifact of
the fact that rlm_ldap is supposed to fetch a known good password, but
I don't have passwords in the LDAP database. rlm_ldap is indeed
successful in authorizing, but there is no Auth-Type set to handle the
authentication.
If
Erik Karlsson wrote:
I am trying to set up a simple Wlan-authentication using EAP-TTLS to
avoid client certificates and PAM to use the server system
authentication scheme. PAM doesn't know about users, and the users are
situated in a LDAP database, which I think makes it logical to use
Alan DeKok wrote:
Why not also get the passwords from ldap? Why use PAM at all?
Because LDAP isn't a very good solution for handling passwords, IMO. I
prefer Kerberos in its simplicity.
If you want to use PAM, you have to force it via Auth-Type.
Thank you, the problem for me is that
Hi all:
I'm new to freeradius. Really need some help and advice here.
I want to set up a LAN with 100 client, if the client want to access the LAN
service(local server, local media/web) is free and/Or not count in
freeradius, but if the client want to access the WAN, the freeradius will
count
Hi All
Any one have an Idea about this problem ,
I changed the account priodic update in my NASes to be 25 Min , and all
works good except
when a session starts ,
I found in Acc Start time : 2008-09-28 03:58:56
and Acc Stopt time : -00-00 00:00:00
And this is good ,
After a period I
Hy!
I am using JRadius together with the FreeRadius.
I put the jradius module inside the authorize and post-authenticate
sections.
Authorize section (implemented inside JRadsius server) sets the Auth-Type on
Accept.
As you can see, the next is received from the rlm_jradius module of
FreeRadius
7 matches
Mail list logo