LDAP Frontend with Support for RADIUS Schema

Holger Rauch rauch.holger at googlemail.com
Sat Nov 6 17:19:30 CET 2010


I would like to use FreeRADIUS on either Debian or FreeBSD stable for VPN
user authentication. Authentication should be based on the following

a) username+MIT Kerberos password
b) MAC address of the machine
c) OTP generated by e.g. a Yubikey device
d) (possibly) a client certificate or a public/private key pair (either
created by SSH or GPG)

(The combination of b) and d) would uniquely identify the machine; the
combination of a) and c) would uniquely identify the user).

I would like to store this information in LDAP DIT (served by OpenLDAP). Up
to now, I've only used OpenLDAP for POSIX+Samba account info und MIT
Kerberos related data.

My questions are:

- Is there any current documentation for such a (or a quite similar)

  Up to now, one documentation I found was


  but this one is related to MAC authentication for WLAN setups

- Are there any web frontends and/or GUI frontends offering support for the
RADIUS schema?

Thanks in advance for any info and kind regards,

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.freeradius.org/pipermail/freeradius-users/attachments/20101106/ce11d9c0/attachment.html>

More information about the Freeradius-Users mailing list