[Date Prev][Date Next] [Chronological] [Thread] [Top]

nss / ldap /radius


 I have successfully installed openldap, nss libs and pam_radius_auth. 
My current config is to enable pam_radius in the /etc/pam.d/sshd file
for authentication and then have the system use the nss_ldap libs to
retrieve account info.

 My question is if there is a way to use this machine (ldap server) as
the authentication "gateway" for all servers on my network.  Any server
that requires radius auth needs a keypair with the radius server.  I was
hoping i could just keep that betweeen my ldap and radius server since i
dont want to deploy a key on every new machine.

Is it possible to use pam_ldap on all the other machines to try and
authenticate thru my ldap server which in turn, will use radius to
validate the credentials?

thanks in advance