hi, is the following configuration possible with freeradius: on a radius server (let's call it radius1) i want to administer users (in plain ascii files). some of them shall have a password given in that text file. all the others are also administered on another radius server (radius2). this server is an rsa/ace server which holds token-based passwords for that users.
authentication should work as follows: the clients connects to radius1 sending username and password. radius1 searches its ascii files for that user. if it finds an entry with password it should check the password and send its answer to the client. if there is no password stored in the ascii file it should forward that request to radius2, where the password is checked against the ace-server. radius2 sends its answer via radius1 to the client. i know this is possible with cisco's acs-radius. there you can put users in groups. then you can define whether passwords of the members of certain groups should be checked against the internal or an external database. i would like to use freeradius! so is it also possible with freeradius? thanx, claus -- +++ GMX - Mail, Messaging & more http://www.gmx.net +++ NEU: Mit GMX ins Internet. Rund um die Uhr f�r 1 ct/ Min. surfen! - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
