Request about implementation of alternate authentication mechanism in freeradius

Michal Vymazal Michal.Vymazal at
Tue Apr 29 15:55:08 CEST 2014

Of course src :-)

We will prepare a "light" technical documentation of this issue and I
will post the document URL to this mailing list.


Dne 29.4.2014 15:15, Arran Cudbard-Bell napsal(a):
> On 29 Apr 2014, at 13:44, Michal Vymazal <Michal.Vymazal at> wrote:
>> Dear all
>> We are going to append binary code to some ldap modules
> Guessing you mean patching the src, rather than going in their with a hex editor...
>> - the goal is to
>> enable ldap to use "alternate passwords" for some ldap entries. Means,
>> every app using ldap bind will can use "alternate passwords" to verify
>> the user access. Useful for the environment of mobile devices etc.
> I'm not sure what you mean by this?
> Surely the attribute for LDAP bind is determined by the LDAP server not FreeRADIUS?
> If you mean retrieving the values of multiple passwords attributes you can already do that in 2.x.x and 3.x.x?
>> My question is - does the freeradius team think about the implementation
>> of this feature to the official freeradius binary code?
> Maybe if you can explain it a bit better.
> Arran Cudbard-Bell <a.cudbardb at>
> FreeRADIUS Development Team
> FD31 3077 42EC 7FCD 32FE 5EE2 56CF 27F9 30A8 CAA2
> -
> List info/subscribe/unsubscribe? See

Michal Vymazal
work: CESNET, z.s.p.o.
AAI Department
Zikova 4, 160 00 Praha 6
Czech Republic

-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 3244 bytes
Desc: Elektronicky podpis S/MIME
URL: <>

More information about the Freeradius-Devel mailing list