Hi,
To create users in the local DataBase of PF, you have to use 2 sql requests.
The first, create a person and the second create the associated password and
rules.
Their is 2 importants tables about users named person and password. This is an
example about how I'm actually using them :
INSERT INTO person(pid,firstname,lastname,email,sponsor)
VALUES('y.legall','yohann','le gall','y.leg...@biocoop.fr','creator') ;
INSERT INTO
password(pid,password,valid_from,expiration,category,sponsor,unregdate)
VALUES('y.legall','password','2017-07-20 00:00:00','2017-07-21
00:00:00',2,'adm-ylg','2017-07-22 00:00:00') ;
Unfortunately passwords aren't encrypted...
Sincerely,
Yohann
________________
Yohann LE GALL
Administrateur Systèmes et Réseaux junior
02.99.13.60.16
________________
-----Message d'origine-----
De : Kylián Martin via PacketFence-users
[mailto:packetfence-users@lists.sourceforge.net]
Envoyé : jeudi 20 juillet 2017 15:50
À : 'packetfence-users@lists.sourceforge.net'
<packetfence-users@lists.sourceforge.net>
Cc : Kylián Martin <kyli...@plzen.eu>
Objet : Re: [PacketFence-users] local SQL vs wireless 802.1x EAP mschav2
Thank you for quick reply.
Does anyone use a custom application to create users in local SQL?
I would like to make a portal where Single SignON for domain users will work -
here they set their wifi password and the portal stores the password + username
and other attributes in local SQL. (Not as a Captive portal) Is this supported?
Thank you
Ing. Martin Kylián
> -----Original Message-----
> From: Kylián Martin via PacketFence-users [mailto:packetfence-
> us...@lists.sourceforge.net]
> Sent: Thursday, July 20, 2017 3:10 PM
> To: 'packetfence-users@lists.sourceforge.net'
> Cc: Kylián Martin
> Subject: [PacketFence-users] local SQL vs wireless 802.1x EAP mschav2
>
> Hi everyone,
>
> I would like to use packetfence for 802.1x PEAP / EAP-MSchapv2
> wireless authentication. (And other features) But I do not want to use
> the AD binding (as it is now). For security reasons, I want to use
> local SQL and authenticate users there.
> (Can I insert users to local sql with my own application correctly?)
>
> The question is - what password encryption can I use in local SQL?
> If I want to use EAP-mschapv2, my password should be a plaintext or NT
> hash.
> (http://deployingradius.com/documents/protocols/compatibility.html)
> Of course, I'd like to see the passwords as bcrypt. I'am afraid it
> won't work then.
>
> How to encrypt passwords in described scenario?
>
>
> Thanks for feedback
>
> Martin Kylián
>
>
> ----------------------------------------------------------------------
> -------- Check out the vibrant tech community on one of the world's
> most engaging tech sites, Slashdot.org! http://sdm.link/slashdot
> _______________________________________________
> PacketFence-users mailing list
> PacketFence-users@lists.sourceforge.net
> https://lists.sourceforge.net/lists/listinfo/packetfence-users
------------------------------------------------------------------------------
Check out the vibrant tech community on one of the world's most engaging tech
sites, Slashdot.org! http://sdm.link/slashdot
_______________________________________________
PacketFence-users mailing list
PacketFence-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/packetfence-users
------------------------------------------------------------------------------
Check out the vibrant tech community on one of the world's most
engaging tech sites, Slashdot.org! http://sdm.link/slashdot
_______________________________________________
PacketFence-users mailing list
PacketFence-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/packetfence-users
