Hello! My Question is about the documentation that I found on the net.http://www.novell.com/documentation/edir_radius/pdfdoc/radadmin/radadmin.pdf... anybody know if this is the best documentation there is.This differs from other guides that I have found. For example this document describes that you in should export your certificate from the eDirectory server and put it in the Freeradius server. Then edit the radius.conf tls_cacertfile with the path to the imported certificate. I have to do some schema changes if I should follow this documentation and before I do that I would like to be shore that this is the best guide. For starters we don’t use universal passwords today, and I am afraid that implementing this could have some negative affects on our live site. My goal is to use this in a “secure” wireless solution. Hop somebody can bring me some light in this matter. Regards /Jonas Magné _________________________________________________________________ Utmana dina kompisar i Sten, sax, påse! http://www.live.msn.se/messenger/#/News/
jonas m wrote:
My Question is about the documentation that I found on the net.
Random documentation found on the net is usually wrong.
http://www.novell.com/documentation/edir_radius/pdfdoc/radadmin/radadmin.pdf
Does anybody know if this is the best documentation there is.
For what? FreeRADIUS *does* come with documentation.
For example this document describes that you in should export your certificate from the eDirectory server and put it in the Freeradius server. Then edit the radius.conf tls_cacertfile with the path to the imported certificate.
Yes.... if you want to use LDAP over SSL, you need to tell FreeRADIUS about the certificates being used.
I have to do some schema changes if I should follow this documentation and before I do that I would like to be shore that this is the best guide.
Schema changes have nothing to do with SSL certificates.
For starters we don’t use universal passwords today, and I am afraid that implementing this could have some negative affects on our live site.
Why?
My goal is to use this in a “secure” wireless solution.
Certificates used for LDAP have nothing to do with wireless certificates. They are different, and SHOULD be different.
Hop somebody can bring me some light in this matter.
You seem to have confused different uses for certificates. Different web sites have different certificates. This is exactly the same kind of situation. You have one set of certificates for LDAP, and another for wireless. Alan DeKok.
Thanks Aland! You have now cleared some things for me. As you said I have mixed things up. About the documentation, I meant the best guide for integrating Freeradius with eDirectory . And you are of course right that schema changes have nothing to do with SSL certificates. But. If I read the Novell Guide then you have to extend eDirectroy schema with the FreeRADIUS schema. About the universal password, I think that I have some reading up to do. /Jonas Magné
Date: Thu, 17 Jul 2008 08:24:32 +0200 From: aland@deployingradius.com To: freeradius-users@lists.freeradius.org Subject: Which documentation Re:
jonas m wrote:
My Question is about the documentation that I found on the net.
Random documentation found on the net is usually wrong.
http://www.novell.com/documentation/edir_radius/pdfdoc/radadmin/radadmin.pdf
Does anybody know if this is the best documentation there is.
For what? FreeRADIUS *does* come with documentation.
For example this document describes that you in should export your certificate from the eDirectory server and put it in the Freeradius server. Then edit the radius.conf tls_cacertfile with the path to the imported certificate.
Yes.... if you want to use LDAP over SSL, you need to tell FreeRADIUS about the certificates being used.
I have to do some schema changes if I should follow this documentation and before I do that I would like to be shore that this is the best guide.
Schema changes have nothing to do with SSL certificates.
For starters we don’t use universal passwords today, and I am afraid that implementing this could have some negative affects on our live site.
Why?
My goal is to use this in a “secure” wireless solution.
Certificates used for LDAP have nothing to do with wireless certificates. They are different, and SHOULD be different.
Hop somebody can bring me some light in this matter.
You seem to have confused different uses for certificates. Different web sites have different certificates. This is exactly the same kind of situation. You have one set of certificates for LDAP, and another for wireless.
Alan DeKok. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
_________________________________________________________________ Utmana dina kompisar i Sten, sax, påse! http://www.live.msn.se/messenger/#/News/
jonas m wrote:
About the documentation, I meant the best guide for integrating Freeradius with eDirectory .
The documentation written by Novell?
And you are of course right that schema changes have nothing to do with SSL certificates. But. If I read the Novell Guide then you have to extend eDirectroy schema with the FreeRADIUS schema.
Yes. So? Alan DeKok.
participants (2)
-
Alan DeKok -
jonas m