Date: Fri, 12 Sep 2003 09:03:12 -0500 From: Mark Johnston <mjohnston@skyweb.ca> To: Martin Jessa <freebsd@yazzy.org> Cc: freebsd-isp <freebsd-isp@freebsd.org> Subject: Re: Mac-address based auth with Radius for wlans Message-ID: <20030912140312.GC1191@omoikane.mb.skyweb.ca> In-Reply-To: <20030912121235.7defa99d.freebsd@yazzy.org> References: <20030912121235.7defa99d.freebsd@yazzy.org>
next in thread | previous in thread | raw e-mail | index | archive | help
Martin Jessa <freebsd@yazzy.org> wrote: > I was wondering if it was possible to somehow combine Mac-address > authentication with SQL stored user data, i.e username@domain.com > with some pass will get his MAC-address stored in a database when he > authenticates and then he gets an IP handed out by the Radius server. > Is there any tool that can do that ? If you're willing to do a bit of setup work, I'd try OpenRADIUS (http://www.openradius.net). It's more of a RADIUS framework than a server, in that you create a "behaviour" file, which is basically a script that it runs in order to respond to requests. You can specify an external program to mung the packet at any point, and it handles things like forking, multiple instances, resource management, etc. I've implemented such esoteric things as 3G MILENAGE authentication in it with little trouble. I'm confident that if it can be done with RADIUS, it can be done in OpenRADIUS. :) I haven't run the server under load, but during testing it felt very solid; still, YMMV. I don't think it's available in ports, but it built cleanly on 4.x last I tried. Mark
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20030912140312.GC1191>