Re: my Radius goal radius and openldap.
Yeah, bit the goal is that it is passed to the server via a secure web page. The end goal here is getting authenticated users the right to connect to the secure ssid's. The Aruba wireless controllers are supposed to do that. If I am way over my head I have a consultant on contract. RHIP. Sent from my Verizon Wireless 4GLTE smartphone ----- Reply message ----- From: "Arran Cudbard-Bell" <a.cudbardb@freeradius.org> To: "FreeRadius users mailing list" <freeradius-users@lists.freeradius.org> Subject: my Radius goal radius and openldap. Date: Mon, Sep 9, 2013 7:34 pm On 10 Sep 2013, at 00:19, "Swenson, Chris" <cswenson@curry.edu> wrote:
No, they are encrypted in the ldap database in md5 hash.
Right, but you have the plaintext version from the user?
I might be too old to do bleeding edge stuff like 3.0 RC1 I will take a look and a poke at it though.
Fair enough. Arran Cudbard-Bell <a.cudbardb@freeradius.org> FreeRADIUS Development Team - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
On 09/09/2013 08:46 PM, Swenson, Chris wrote:
Yeah, bit the goal is that it is passed to the server via a secure web page. The end goal here is getting authenticated users the right to connect to the secure ssid's. The Aruba wireless controllers are supposed to do that. If I am way over my head I have a consultant on contract. RHIP.
Unless I'm missing something here this is a very simple configuration. You've got passwords stored in LDAP using an MD5 hash. You receive a username/password pair from your web app. The password will be cleartext. This is just straight forward PAP. Lookup the username in ldap in the authorize section, set the password in the request to the md5 hash you looked up and let pap handle it.
----- Reply message ----- From: "Arran Cudbard-Bell" <a.cudbardb@freeradius.org> To: "FreeRadius users mailing list" <freeradius-users@lists.freeradius.org> Subject: my Radius goal radius and openldap. Date: Mon, Sep 9, 2013 7:34 pm
On 10 Sep 2013, at 00:19, "Swenson, Chris" <cswenson@curry.edu> wrote:
No, they are encrypted in the ldap database in md5 hash.
Right, but you have the plaintext version from the user?
I might be too old to do bleeding edge stuff like 3.0 RC1 I will take a look and a poke at it though.
Fair enough.
Arran Cudbard-Bell <a.cudbardb@freeradius.org> FreeRADIUS Development Team
- List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
- List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
-- John
participants (2)
-
John Dennis -
Swenson, Chris