Request about implementation of alternate authentication mechanism in freeradius

Alan DeKok aland at
Tue Apr 29 16:17:34 CEST 2014

Michal Vymazal wrote:
> No exactly.
> We want to enable to ldap to use more than one password for one service.
> Means - hash no. 1 not match - ldap will try the hash no. 2  etc.

  That's a terrible design.  It's slow and fragile.

  You should instead choose the password based on the server.  If
service is X, password is in OID X, etc.

  Alan DeKok.

More information about the Freeradius-Devel mailing list