On Tue, 18 Feb 2003, Peter V. Saveliev wrote:
> ...
>
> Hello.
>
> I want to use LDAP for Login-User and Oracle for Framed-User access. So,
> only question is - can I use same usernames in LDAP and Oracle (with
> different passwords)? How to set it up?
>
> For example, there is user 'foo', and he wants to use dial-up access as
> foo:123 (authz. via Oracle), and to login to the system console as
> foo:321 (authz. via LDAP).
>
> I have user 'foo' both in LDAP and Oracle databases. But when 'foo'
> tries to use dial-up, he has got auth. fail only because of LDAP record.
> At the same time, he's able to login to the console, though rlm_sql
> fails with 'rlm_sql (sql): Pairs do not match for user [foo]'.
>
> Is this possible at all to use records in different databases with the
> same username, but with different passwords?
>
> PS: sorry my awful English
I don't really understand why you need to break it this way but whatever.
Use Autz-Type and Auth-Type to select authorization/authentication modules.
See doc/Autz-Type
users:
DEFAULT Service-Type == Framed-User, Autz-Type := SQL, Auth-Type := PAP
DEFAULT Service-Type == Login-User, Autz-Type := LDAP, Auth-Type := LDAP
radiusd.conf:
authenticate{
authtype PAP {
pap
}
authtype LDAP {
ldap
}
}
authorize{
preprocess
suffix
autztype SQL {
sql
}
autztype LDAP {
ldap
}
files
}
>
> --
> Sincerely, Peter V. Saveliev
>
> E-mail: [EMAIL PROTECTED]
> Jabber: [EMAIL PROTECTED]
>
>
> -
> List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
>
--
Kostas Kalevras Network Operations Center
[EMAIL PROTECTED] National Technical University of Athens, Greece
Work Phone: +30 210 7721861
'Go back to the shadow' Gandalf
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
