Seek through several RADIUS severs without realms

Ronen Kfir ronen.kfir at cidway.com
Thu Jul 31 16:47:14 CEST 2008


As I didn't get any response yet, I would like to make my self clearer: 

I'm looking for alternative ways to differ among authenticated users, other
then realms. I thought that the way to do it is, as I described bellow. The
thing is I'm not sure how to implement this idea with in Free RADIUS. Please
help me in the configuration and implamantation of this concepts.


Thank you,

Ronen










My scenario is as follow:
I use more then one strong authentication system, which is OTP (One Time
Password) based and has a RADIUS interface. I use the same users repository
for the various authentication systems and wish to differ between the
authentication systems, using Free RADIUS .Net. I wouldn't like to use
realms, as I would like users to use ordinary username and not make them use
a realm. I think that the way to do it, is to create sort of loop, which
will run through the various RADIUS interfaces of the OTP systems and seek
for a given username. If it fails on one  system, continue to the next one,
and if not found in any of them, send reject access response.


Best,
 
Ronen.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/x-pkcs7-signature
Size: 3086 bytes
Desc: not available
URL: <http://lists.freeradius.org/pipermail/freeradius-users/attachments/20080731/5d240654/attachment.bin>


More information about the Freeradius-Users mailing list