Locking accounts after failed attempts. pam_tally ?

Alan DeKok aland at deployingradius.com
Tue Aug 19 08:44:27 CEST 2008


Mark Tunnell wrote:
> Is there a way to disable radius access for a user after a specified
> number of incorrect passwords using the standard Unix passwd system? 

  I don't know of any way.

> I
> have pam_tally running and it correctly increments on failed SSH login
> attempts.  However, failed Radius attempts do not increment the counter.
>  Is there a way to make pam_tally work with Radius or do I need to find
> another way to do this?

  It's PAM magic.  I'd suggest asking on a PAM list.

  Alan DeKok.



More information about the Freeradius-Users mailing list