What does the module rlm_krb5 do?
Alan Buxey
A.L.M.Buxey at lboro.ac.uk
Sun Dec 13 23:17:12 CET 2009
Hi,
> I am new to FreeRADIUS. I would like to set up FreeRADIUS, such that the
> AS proxies the Kerberos authentication request from the access point to
> the Kerberos KDC and the access point grants access to the wired network
> upon successful authentication.
can the AP do kerberos? if so, why the RADIUS?
what you probably mean is that you will take a user/pass from a client
as their login - PAP/captive portal? or EAP-TTLS/PAP ?
what rlm_krb5 is take those details and use the system kerberos
(eg stuff all done via /etc/krb5.conf etc) so auth against your
kerberos KDC system - MS AD or whatever it is.
so long as your krb5 environment is fine - eg 'kinit someuser'
works, then rlm_krb5 does its job very well thanks - we've got 3
different installations doing that
alan
More information about the Freeradius-Users
mailing list