[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: YubiKey authentication

To: Francis Swasey <Frank.Swasey@uvm.edu>
Subject: Re: YubiKey authentication
From: Aaron Richton <richton@nbcs.rutgers.edu>
Date: Mon, 28 Mar 2011 15:21:27 -0400 (EDT)
Cc: openldap-technical@openldap.org
In-reply-to: <4D90DBD0.7000106@uvm.edu>
References: <4D90DBD0.7000106@uvm.edu>
User-agent: Alpine 2.00 (SOC 1167 2008-08-23)

If you're only using the OTP function, I'd refer you to the RADIUS contribmodule.

Of course, if you need a dialogue for challenge-response, your question(SASL/YubiKey integration) is exactly on point...and I can't help youthere.


On Mon, 28 Mar 2011, Francis Swasey wrote:

My boss dropped by and asked me if it would be possible to have our OpenLDAP servers (2.4)
which are currently using the {SASL} password form to authenticate against saslauthd which goes
to Kerberos be configured (on a per entry basis) to authenticate against the YubiKey or Kerberos.

Has anyone set up an OpenLDAP server to authenticate against YubiKey?  Or hooked YubiKey's
authenication into SASL?  (google hasn't found anything for me yet)

Thanks,

--
Frank Swasey                    | http://www.uvm.edu/~fcs
Sr Systems Administrator        | Always remember: You are UNIQUE,
University of Vermont           |    just like everyone else.
 "I am not young enough to know everything." - Oscar Wilde (1854-1900)

References:
- YubiKey authentication
  - From: Francis Swasey <Frank.Swasey@uvm.edu>

Prev by Date: YubiKey authentication
Next by Date: meta and AD disabled accounts
Index(es):
- Chronological
- Thread