Request about implementation of alternate authentication mechanism in freeradius
Alan DeKok
aland at deployingradius.com
Tue Apr 29 16:17:34 CEST 2014
Michal Vymazal wrote:
> No exactly.
> We want to enable to ldap to use more than one password for one service.
>
> Means - hash no. 1 not match - ldap will try the hash no. 2 etc.
That's a terrible design. It's slow and fragile.
You should instead choose the password based on the server. If
service is X, password is in OID X, etc.
Alan DeKok.
More information about the Freeradius-Devel
mailing list