For historical reasons, my users list is on a different machine (and a different OS) from my FreeRADIUS server. (The users list is in a Microsoft SQL Server database, using a bizarre database schema, intended for use with RadiusNT - some ancient version thereof.)
I've hacked around that, in the short term, by writing a script that automatically creates a Users text file and restarts radiusd every 20 minutes or so during business hours. It works, but I don't like it. There are too many things that can go wrong with a batch file that uses 'wget' . :-) Is there a simple (maybe not that simple, since I didn't see it in the FAQ) way to hook into some arbitrary authentication method? What I'd like to do is: * Write some program (probably in C) that takes, as command line arguments, a username and password. * When the program runs, it spits out some arbitrary return code * (Most of the RADIUS attributes aren't necessarily relevant here -- this is used only for dialup users, so I could probably just rig up a default or fall- through for PPP) * Have radiusd act based on the return code. Something simple like '0' for 'let them authenticate' and '1' for 'reject'. Is this even possible? (I'm sure it is, but I'd like to avoid digging into the innards of FreeRADIUS more than necessary.) thanks! David Smith MVN.net - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
