Re: authenticating based on Nas-Port-Id

To: "FreeRadius users mailing list" <freeradius-users@lists.freeradius.org>

Subject: Re: authenticating based on Nas-Port-Id

From: "Alex French" <alex@evilal.com>

Date: Tue, 15 Aug 2006 23:22:03 +0100

Domainkey-signature: a=rsa-sha1; q=dns; c=nofws; s=beta; d=gmail.com; h=received:message-id:date:from:sender:to:subject:in-reply-to:mime-version:content-type:references:x-google-sender-auth; b=Zqwyk/e1LSRDxIHtG3EwjPO2nFRFLsnbfTOlmWPLAxQPI68HOvG2Wqwa9YntZBzqRp6pOUAAEuQH825sF4syn+2j4KoPrsa8gsZr7ao/XjGEQFFl8n+ZdYYEBsxTSdMMiXJSTLkIhIvaU3+4oetWj2N7Ks/DEflKSjjtaMQLiU0=

In-reply-to: <91bb11f05bbfb33e8bf57c67f8a0077444d0edae@SMARTTELECOM.IE>

References: <91bb11f05bbfb33e8bf57c67f8a0077444d0edae@SMARTTELECOM.IE>

Reply-to: FreeRadius users mailing list <freeradius-users@lists.freeradius.org>

Sender: alexfrench@gmail.com

On 02/08/06, Colm Ennis <cennis@smarttelecom.ie> wrote:

hiya,

does anyone know if users/sql authentication based on the NAS-Port-Id
field possible? and if so how?

Colm,

What are you going to authenticate? If they can use any username/password, then are you just checking whether a port is active or inactive?

You're probably talking about defining a new authentication module (which can then do anything you want). A quick way would be to use rlm_perl to embed a perl module that does the authentication (see http://wiki.freeradius.org/index.php/Rlm_perl). It can access a DB etc if required.

Thanks,

Alex

References:

RE: authenticating based on Nas-Port-Id
- From: "Colm Ennis" <cennis@smarttelecom.ie>

This archive was generated by a fusion of Pipermail (Mailman edition) and MHonArc.