LDAP Frontend with Support for RADIUS Schema
Holger Rauch
rauch.holger at googlemail.com
Sat Nov 6 17:19:30 CET 2010
Hi,
I would like to use FreeRADIUS on either Debian or FreeBSD stable for VPN
user authentication. Authentication should be based on the following
information:
a) username+MIT Kerberos password
b) MAC address of the machine
c) OTP generated by e.g. a Yubikey device
d) (possibly) a client certificate or a public/private key pair (either
created by SSH or GPG)
(The combination of b) and d) would uniquely identify the machine; the
combination of a) and c) would uniquely identify the user).
I would like to store this information in LDAP DIT (served by OpenLDAP). Up
to now, I've only used OpenLDAP for POSIX+Samba account info und MIT
Kerberos related data.
My questions are:
- Is there any current documentation for such a (or a quite similar)
scenario?
Up to now, one documentation I found was
http://vuksan.com/linux/dot1x/802-1x-LDAP.html
but this one is related to MAC authentication for WLAN setups
- Are there any web frontends and/or GUI frontends offering support for the
RADIUS schema?
Thanks in advance for any info and kind regards,
Holger
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.freeradius.org/pipermail/freeradius-users/attachments/20101106/ce11d9c0/attachment.html>
More information about the Freeradius-Users
mailing list