<br>>>Can you point to a specification saying how this hashing works?<br><br>A---------->B(nsis server)--------->C(radius server)<br><br>User A generates a large buffer which contains various Authentication Attributes, A hash of this string is generated using MD5 algorithm with a key known to both users A and C, This string is appended to the original string and sent over the network, Node B get this string and it extract various session attributes from this string.
<br><br>The attributes extracted should be used to construct the diameter message using freeradius client library.<br><br><br>
<br><br><br><br><br><br><br><br><div><span class="gmail_quote">On 4/12/07, <b class="gmail_sendername"><a href="mailto:freeradius-users-request@lists.freeradius.org">freeradius-users-request@lists.freeradius.org</a></b> <
<a href="mailto:freeradius-users-request@lists.freeradius.org">freeradius-users-request@lists.freeradius.org</a>> wrote:</span>Date: Thu, 12 Apr 2007 10:23:51 +0200<br>From: Alan DeKok <<a onclick="return top.js.OpenExtLink(window,event,this)" href="mailto:aland@deployingradius.com">
aland@deployingradius.com</a>><br>Subject: Re: Generating AAA message for freeradius.<br>To: FreeRadius users mailing list<br> <<a onclick="return top.js.OpenExtLink(window,event,this)" href="mailto:freeradius-users@lists.freeradius.org">
freeradius-users@lists.freeradius.org</a>><br>Message-ID: <<a onclick="return top.js.OpenExtLink(window,event,this)" href="mailto:461DEC97.7030807@deployingradius.com">461DEC97.7030807@deployingradius.com</a>><br>
Content-Type: text/plain; charset=ISO-8859-1<br><br>Prateek Gupta wrote:<br>> User A sends the NSIS request with its keyed hash (generated using User<br>> A's key) appended to it to the NSIS server. Now the NSIS server needs to
<br>> authenticate that request with a Radius server.<br><br> Can you point to a specification saying how this hashing works?<br><br>> Is there a way to do this i.e. how to generate a AAA message with the<br>> information available
i.e. a string, its keyed hash and User A's id ?<br>> Assuming that the Radius server has keys of all legitimate users.<br><br> Yes.<br><br><a onclick="return top.js.OpenExtLink(window,event,this)" href="http://www.freeradius.org/freeradius-client/" target="_blank">
http://www.freeradius.org/freeradius-client/</a><br><br> Alan DeKok.<br>--<br> <a onclick="return top.js.OpenExtLink(window,event,this)" href="http://deployingradius.com/" target="_blank">http://deployingradius.com</a> - The web site of the book
<br> <a onclick="return top.js.OpenExtLink(window,event,this)" href="http://deployingradius.com/blog/" target="_blank">http://deployingradius.com/blog/</a> - The blog<br></div><br>