O/H Jóhann B. Guðmundsson έγραψε: > RHEL5/FreeRadius freeradius-1.1.3-1.2.el5/Fedora Directory server. > > Scenario... > > Currently trying to move all our dial up user entry's from users file to > ldap ( FDS ) > and need to add an attribute in radius ldap schema which would contain > clear text password > of the dial in password for the dial up users and match the dial in > password to that password > instead of users login password. > > What needs to be done to make this possible if it is possible? > > ( user are already authenticated through ldap except for their adsl > dial in passwords > which are in clear text and even if the passwords weren't in clear text > and they could > use there login password to login the user ain't smart enough and or > technology challenge ( or at least majority of them ) > to know if they change they're login password they needed to change it > in the adsl router as well ) > > Schema changes? > Dictionary changes > ldap.attrmap changes > ldap changes in radiusd.conf? ( password_attribute already mapped to > userPassword in the ldap section ) > > Best regards > Johann B. > > You need to add the new attribute in the schema (add it in the user entries) and add it in the password* configuration directives of the ldap module. I don't think you need to touch the dictionaries or ldap.attrmap. After that, configure the pap module and you should be set.
-- Kostas Kalevras - Network Operations Center National Technical University of Athens http://kkalev.wordpress.com - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
