Re: secondary authentication server

Chris Adams (cadams@ro.com)
Sun, 27 Apr 1997 23:58:36 -0500 (CDT)

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: Jon Lewis: "Re: secondary authentication server"
Previous message: Jon Lewis: "Re: secondary authentication server"
In reply to: Jon Lewis: "Re: secondary authentication server"

Once upon a time, Technical Support wrote
> We want to run radius on another server SS2/Solaris 2.5 using the
> DEFAULT/UNIX scheme, however, we do not want radius on the secondary server
> to look in /etc/passwd and /etc/shadow, we would like to copy the
> /etc/passwd and /etc/shadow files from the primary server at regular
> intervals to a location other than /etc on the secondary server and have
> radius authenticate with these files instead of the standard /etc/passwd
> and /etc/shadow files. This way authorized users on the primary cannot
> telnet into the secondary, but can get authenticated by radius if the
> primary is down for some reason.

I have a patch for radiusd that allows you to set the password file
used, but it only works on Linux where the C library has the function
"setpwfile". It might work on some other systems with this function
(Digital Unix also has it), but as far as I can tell, Solaris does not.

-- 
Chris Adams - cadams@ro.com
System Administrator - Renaissance Internet Services
I don't speak for anybody but myself - that's enough trouble.

Next message: Jon Lewis: "Re: secondary authentication server"
Previous message: Jon Lewis: "Re: secondary authentication server"
In reply to: Jon Lewis: "Re: secondary authentication server"