Hi Quentin, You could take a look at Radius authentication. We use it for authenticating users to access the Internet and router access (config). There are many products, including freeware, that run Radius. We use it on a Win2K box with IAS (internet Autentication Server). There are also products for Linux servers. Not sure when you setup Radius on a Win box if the Linux servers can use the same data to authenticate. You have to search around on the Internet for some applications. Or maybe someone else has more knowledge on the different apps that you can use. Hope this helps.
Martijn Dunnebier C-it B.V. www.c-it.nl -----Original Message----- From: Quentin Hartman [mailto:[EMAIL PROTECTED]] Sent: maandag 15 juli 2002 18:25 To: [EMAIL PROTECTED] Subject: Authenticating mixed clients for Internet Access Colleagues- I am working on re-building a network for a k-12 institution, and am trying to put in some security features that are sorely needed. One of the most glaringly obvious omission for this environment is that there is no mechanism in place to authenticate users for internet access. It is a mixed environment of Linux and Windows 9x workstations and Linux and NT servers. I would very much like to have centralized user management. The scenario goals we are trying to achieve are: 1- Unrestricted user logs in. Has access to file / app servers and Internet 2- Semi-restricted user logs in. Has access to file / app servers, but not internet. 3- restricted user logs in. Has access only to local files and programs. 4- Unauthorized user cannot login. I imagine a combination of policy files for the 9x clients, samba, pam, and squid could achieve this, but I would like your feedback on the best way to proceed to complete this project. Am I on the right track at all? -Regards- -Quentin Hartman-
