Request about implementation of alternate authentication mechanism in freeradius

[Alan DeKok]

Michal Vymazal wrote:
> No exactly.
> We want to enable to ldap to use more than one password for one service.
> 
> Means - hash no. 1 not match - ldap will try the hash no. 2  etc.

  That's a terrible design.  It's slow and fragile.

  You should instead choose the password based on the server.  If
service is X, password is in OID X, etc.

  Alan DeKok.