2 PAM Support for Cistron-radiusd
7 PAM support was done by Jeph Blaize. Miguel a.l. Paraz <map@iphil.net>
8 ported it to Cistron-Radius. Chris Dent <cdent@kiva.net> added the
9 Pam-Auth attribute. It is not complete yet but seems to work
10 (for authentication only).
14 Use Auth-Type = Pam in the users file. For backwards compatibility,
15 you can also use Password = "PAM" but, like Password = "UNIX", this
18 You can also use ``Pam-Auth = "somestring"'' to specify an entry in
19 /etc/pam.d. The default is "radius".
23 Added the following hacks, see CFLAGS in src/Makefile to activate.
24 Crude support for PAM authentication (-DPAM), User-Password = "PAM".
26 Miguel has made PAM changes to the Cistron radiusd, since he now uses
27 it as the basis of many accounting systems. However, according to the
28 PAM experts, calling the pam_start function for each user to be
29 authenticated is a bad idea. Seems to work for him, though.
31 Besides, the Pam-Auth attribute only works if pam_start is called
36 Real PAM support, figure out how we can write a module that will make
37 it blend in with PAM more seamlessly. With this, we can replace the
38 DENY_SHELL with something more flexible such as a database.
42 DEFAULT Auth-Type = Pam, NAS-IP-Address = 206.97.64.5
43 Service-Type = Framed-User,
44 Framed-Protocol = PPP,
45 Framed-IP-Address = 255.255.255.254,
46 Filter-Id = "std.ppp",
48 Framed-Compression = Van-Jacobson-TCP-IP
49 DEFAULT Auth-Type = Pam, Pam-Auth = "radius2", NAS-IP-Address = 127.0.0.1
50 Service-Type = Framed-User,
51 Framed-Protocol = PPP,
52 Framed-IP-Address = 255.255.255.254,
53 Filter-Id = "std.ppp",
55 Framed-Compression = Van-Jacobson-TCP-IP