hi jason hi guys
> Interesting concept -- but why would you want to do that? All of the well, radius has the advantage to be a central network element with access to sql and ldap data bases. using a dhcp server is kind of not related to the authentication procedure which takes place before. additionally, why installing and maintaining two elements in the network if radius is already there and indispensable for the network access (like in WLAN case)? there are other arguments to this points, which are related to a project which i'm currently involved in. > applications that RADIUS provides authentication for already have > built-in mechanisms to serve IP addresses. NAS' are the simplest of the i'm sorry but i don't think that i get your point here... could you rephrase it? does your nas serve as a dhcp server? > bunch, but even WLAN -- the AP needs to be attached to a router of sorts > somewhere along the line. If the AP is simply an extension of a wired > LAN, the possibility that such a device exists is even greater, as > chances are that the rest of, or a large portion of the existing wired > LAN uses DHCP already. i actually think that your argument is: in any case you have the dhcp server somewhere in the network, just by coincidence :-) ok, i agree with that. it's really a very simple piece of software and not really difficult to manage, but it can't know about users authenticated by radius. that's what i want to do. > Don't get me wrong, Arthur, I'm not finding fault. It's an interesting > idea -- I'm simply trying to figure out where you would envision such > functionality. why should i get you wrong? it's ok that you question the sense of the plan. but back to the actual question: can i do something like that? or otherwise how can i be sure that the attributed ip corresponds to one and only user (supposing that he can't reconfigurate and thus spoof other ip addresses on his machine)? can i send this information over radius proxying thus communicating it to user's home radius server? thank you very much artur -- Artur Hecker artur[at]hecker.info - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
