[pptp-server] Re:LDAP/PAM for authentication

[Daniell Freed]

I don't know much about Radius.  Do you have any links to some info on
it?

Dan

"Scott M. Stone" wrote:
> 
> On Thu, 30 Mar 2000, Daniell Freed wrote:
> 
> > Thanks I appreciate the info.  For the moment I guess they will just
> > have to use 1 more password.
> 
> why not use radius?
> 
> >
> > Dan
> >
> > Adam Williams wrote:
> > >
> > >  From          : lists>pptp-server-admin
> > >  To            : adam
> > >  Subject       : [pptp-server] LDAP/PAM for authentication
> > >  Date          : 01/01/70 01:01
> > >
> > > >Does anyone know of any means to use either an LDAP server or PAM (with
> > > >the LDAP patch) to authenticate PPP (or more specifically PPTP)
> > > >clients?
> > >
> > > PPP does the actual auth, not PPTPD. PPP can only work with PAM when using
> > > PAP auth, and not when using CHAP, which means no data encryption.~
> > >
> > > >We are trying to move all, or most, of our user authentication over to use an
> > > >LDAP based directory.  The users will be nearly all Windows based (NT 4.0,
> > > >95/98, and 2000).
> > >
> > > So are we,  this is a stumbling block, at least until MS-CHAP get's
> > > implemented on the server side of PPPd which currently only really has
> > > the client portion.  See README.MSCHAP80 in the pppd source for more~
> > > details.~
> > >
> > > >Does anyone have any thoughts about this, or is this pretty much not doable
> > > >with the way that PPP and Windoww handles authentication?
> > >
> > > It is doable in theory, but not with the current PPPd.  If your willing to
> > > give up data encyption PAP works with pam_ldap just fine.
> > >
> > > _______________________________________________
> > > pptp-server maillist  -  pptp-server at lists.schulte.org
> > > http://lists.schulte.org/mailman/listinfo/pptp-server
> > > List services provided by www.schulte.org!
> >
> >
> 
> --------------------------
> Scott M. Stone, CCNA <sstone at taos.com>
> UNIX Systems and Network Engineer
> Taos - The SysAdmin Company