10 Dec
2006
10 Dec
'06
2:19 p.m.
Peter Urban wrote:
i have a mobile phone that produces a token. the token is a md5-hash of a shared-secret and the actual time in ms.
Is this a standardized method? If so, what's the name?
now the freeradius has to calculate some tokens (cause time on server and mobile are not the same). md5 of the shared secret from the user from ldap and actual time.
Write a program to do this, and run the program when a packet is received. See rlm_exec.
Can it be implemented? Is there literature that I need to have a look at? Is there already a plugin that supports time based one time passwords?
There's no existing plugin. Alan DeKok. -- http://deployingradius.com - The web site of the book http://deployingradius.com/blog/ - The blog