From owner-freebsd-net Thu Sep 16 8:29:45 1999 Delivered-To: freebsd-net@freebsd.org Received: from ferao.jungle.bt.co.uk (ferao.jungle.bt.co.uk [132.146.107.45]) by hub.freebsd.org (Postfix) with ESMTP id 4945D15781 for ; Thu, 16 Sep 1999 08:28:53 -0700 (PDT) (envelope-from jtorrico@jungle.bt.co.uk) Received: from jungle.bt.co.uk ([132.146.112.7]) by ferao.jungle.bt.co.uk (8.9.1b+Sun/Jungle-8.9.1-03) with ESMTP id QAA11865 for ; Thu, 16 Sep 1999 16:24:54 +0100 (BST) Message-ID: <37E10DFF.BFC45665@jungle.bt.co.uk> Date: Thu, 16 Sep 1999 16:34:23 +0100 From: Jaime Gil X-Mailer: Mozilla 4.61 [en] (X11; I; FreeBSD 3.2-RELEASE i386) X-Accept-Language: en MIME-Version: 1.0 To: freebsd-net@freebsd.org Subject: Re: pppd+tacacs References: <7rlhl6$jiu$1@news.lucky.net> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hi all, I have tested RADIUS authentication in ppp successfully. They have a patch which deals with this kind of authentication protocol. It can be found in http://www.freebsd.org /~brian/ It uses a default library in freebsd (libradius) which can be used to build your own requests to a RADIUS server very easily. As for tacacs, no idea.... "Vladimir A. Jakovenko" wrote: > Dmitry Samersoff wrote: > > > On 13-Sep-99 Kris Kennaway wrote: > >> On Fri, 10 Sep 1999, Grzegorz Malinka wrote: > >> > >>> Where can I find a pppd deamon with tacacs support for BSD? > >> > >> I don't really know what tacacs does, but I've seen it referenced as a PAM > >> module. pppd will (theoretically) work with PAM, although possibly not the > >> version currently in the base tree. > > > Tacacs is authorisation server(protocol) with MD5 encription, well supported by > > CISCO's and others hardware, another kind of such software is Radius. > > > It's good idea to add better (native) support of remote authorization by ether > > Tacacs or Radius or both protocol to FreeBSD. > > FreeBSD as for 3.x (3.0 or 3.1) contains PAM modules for Tacacs+ and Radius. > And at least Tacacs+ PAM module support only authentication (and doesn't > support authorization and accounting). Standart pppd from FreeBSD 3.x can > be compiled to use PAM (-DUSE_PAM), but I havn't tested how it work. > > If someone interested to extend FreeBSD libtacplus and Tacacs+ PAM module to > support authorization and acounting pls mail me. > > > --- > > Dmitry Samersoff, dms@wplus.net, ICQ:3161705 > > http://devnull.wplus.net > > * There will come soft rains ... > > -- > Regards, > Vladimir. > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-net" in the body of the message -- Jaime Gil work tel. (01473) 648635 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message