I have so many questions about this product, I am not sure where to start except that I should first tell what I am trying to with it first. I have read the doc/ and skimmed the oreilly radius book. I have different aironet 350 ap/bridges that I want to authenticate all of the bridges, not the users connecting to them. The client is concerned with a person getting a personal bridge and getting part of wireless link into the network. The users connecting to the ap will authenticate another way. And on another lan we do want the ability to authenticate users someway like, since this is going to be a hotspot we are not sure what type of users they should be or if we should even bother with authentication in the hotspot. We are planning on putting the freeradius server on linux 450 mhz. and possibly a redundant one as well.
So my questions would be can it authenticate the cisco ap using EAP or LEAP to the radius, if I configure the ap to point to this freeradius server? From the docs it sounds like I can but I only see references that say you have users, ( that you create) to authenticate through the ap and to the radius server. The second one is there a disadvantage of having the user/passwords in passwd/shadow files as opposed to having them in a mysql database? I thought I can do this and it seems like that would be less admin work. I have some knowledge of how radius works, like from csacs but I am totatlly lost with this, if someone could post some of thier config files or send them to me, nothing secret like passwords or anything just like how it should be layed out since I think I am missing the larger picture should look like. Thanks and if my questions were too basic then if you can just tell me which doc to read I will go from there. Sam ___________________________________________________ Check-out GO.com GO get your free GO E-Mail account with expanded storage of 6 MB! http://mail.go.com - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
