Using freeRadius with OTP and gateway
Cornelius Kölbel
cornelius.koelbel at lsexperts.de
Thu Mar 8 08:22:09 CET 2012
Hello Mercier,
the interesting part about your idea is, that the user sends the SMS to
authenticate, this avoids that you will have to pay for the SMS.
Most solutions send the SMS with the OTP to the user, so that you - the
provider - will have to pay for the SMS sending.
Nevertheless you might take a look at LinOTP, which does one time
password authentication and come with a freeradius module, so that
integration in your scenario could be rather simple. Also in this case
the RADIUS server does not know the users, but the auth request (with
user and OTP) is forwarded to the linotp daemon, which in turn is able
to verify the username and the provided OTP. The users can be fetched
from any flat file and/or LDAP and/or SQL database.
Only drawback for your case is the thing with "who sends the sms".
Kind regards
Cornelius
Am 07.03.2012 13:56, schrieb Mercier Valentin:
> Hi everyone,
>
> I'm using Freeradius 2.1.12 on a server Debian. I have an another
> server Debian with Coovachilli (captive portal) and an Access Point
> based on Ruckus OS.
> When my users connected on the AP, a web page is coming with a
> formular to connect. Then the user enter is information (username and
> password) and Coovachilli made the authentication on the radius and
> this is working fine.
>
> Now I want to make something different, when the user connected on the
> AP, I want that he received a little formular, then he need to enter a
> username (not know on the radius) and i want the radius to create a
> One Time Password and send it to the user (on an another webpage). And
> the user send this OTP via SMS to a smsm gateway to finish the
> authentication, is that possible, and if yes, could someone explain to
> me how I can make it ?
>
> For the gateway sms I am using SMSLib (java library) on the
> *same* server as freeradius.
>
> Best regards and sorry for my bad english (from switzerland).
> --
> Mercier Valentin
>
>
> -
> List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.freeradius.org/pipermail/freeradius-users/attachments/20120308/a83de0eb/attachment.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 262 bytes
Desc: OpenPGP digital signature
URL: <http://lists.freeradius.org/pipermail/freeradius-users/attachments/20120308/a83de0eb/attachment.pgp>
More information about the Freeradius-Users
mailing list