freeradius and yubikeys
Frederic Van Espen
frederic.ve at gmail.com
Fri May 9 15:42:25 CEST 2014
On Fri, May 9, 2014 at 2:32 PM, Arran Cudbard-Bell
<a.cudbardb at freeradius.org> wrote:
> Oops. It's more like
>
> authorize {
> # 44 is OTP len + ID Len
> if (User-Password =~ /^(.*)([cbdefghijklnrtuv]{44})$/) {
> update request {
> User-Password = "%{2}"
> }
> yubikey.authenticate
Perfect! That was the missing bit! Thank you sir!
It is now authenticating the yubikey OTP. Afterwards it fetches the
crypt password from ldap which is then verify using PAP in the
authenticate section.
Cheers,
Frederic
More information about the Freeradius-Users
mailing list