[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: (ITS#4542) [contrib] RADIUS hash scheme support



I wonder if it would be more appropriate to have RADIUS
authentication support in saslauthd instead...  - Kurt

At 05:37 AM 5/12/2006, ando@sys-net.it wrote:
>Full_Name: Pierangelo Masarati
>Version: HEAD
>OS: irrelevant?
>URL: ftp://ftp.openldap.org/incoming/
>Submission from: (NULL) (131.175.154.56)
>Submitted by: ando
>
>
>I've committed to contrib/slapd-modules/passwd/radius.c a contribution that
>implements the {RADIUS} hash scheme; users whose entry contains a userPassword
>prefixed with "{RADIUS}" are authc'd using radius, where the value of
>userPassword is used as RAD_USER_NAME.
>
>For example:
>
>dn: uid=user,ou=people,dc=example,dc=com
>objectClass: inetOrgPerson
>cn: User Name
>sn: Name
>uid: user
>userPassword: {RADIUS}raduser
>
>when binding as -D "uid=user,ou=people,dc=example,dc=com" -w "radsecret"
>authenticate using radius, where "raduser" is used for RAD_USER_NAME and
>"radsecret" for RAD_USER_PASSWORD.
>
>The module is loaded as
>
>moduleload <modulename> [config=/path/to/radius.conf]
>
>This contribution is experimental, and essentially untested.  Please test,
>comment and report thru the ITS.
>
>p.