projects
/
devwiki.git
/ blobdiff
commit
grep
author
committer
pickaxe
?
search:
re
summary
|
shortlog
|
log
|
commit
|
commitdiff
|
tree
raw
|
inline
| side by side
Radsec no longer requires dictionary
[devwiki.git]
/
configuringdebian.mdwn
diff --git
a/configuringdebian.mdwn
b/configuringdebian.mdwn
index
1712504
..
601ac4d
100644
(file)
--- a/
configuringdebian.mdwn
+++ b/
configuringdebian.mdwn
@@
-1,7
+1,7
@@
Clean installation of Debian 6.
echo "deb http://repository.project-moonshot.org/debian-moonshot sid main" > /etc/apt/sources.list.d/moonshot.list
Clean installation of Debian 6.
echo "deb http://repository.project-moonshot.org/debian-moonshot sid main" > /etc/apt/sources.list.d/moonshot.list
- echo "deb http://ftp.cz.debian.org/debian testing main contrib non-free" > /etc/apt/sources.list.d/testing
+ echo "deb http://ftp.cz.debian.org/debian testing main contrib non-free" > /etc/apt/sources.list.d/testing
.list
wget -O - http://repository.project-moonshot.org/key.gpg | apt-key add -
wget -O - http://repository.project-moonshot.org/key.gpg | apt-key add -
@@
-23,18
+23,13
@@
Clean installation of Debian 6.
Pin-Priority: 650
EOF
Pin-Priority: 650
EOF
-
+ apt-get update
apt-get install -t testing libkrb5-3 krb5-user krb5-gss-samples
apt-get install moonshot-gss-eap freeradius-common
apt-get install -t testing libkrb5-3 krb5-user krb5-gss-samples
apt-get install moonshot-gss-eap freeradius-common
-
- ktutil
- addent -password -p host/localhost@EXAMPLE.ORG -k 1 -e aes256-cts
- wkt /etc/krb5.keytab
- quit
-
+ apt-get install libapache2-mod-shib2
cat >/etc/radsec.conf <<EOF
cat >/etc/radsec.conf <<EOF
- dictionary = "/etc/freeradius/dictionary"
+
realm gss-eap {
type = "UDP"
realm gss-eap {
type = "UDP"
@@
-54,4
+49,8
@@
Clean installation of Debian 6.
cat >/usr/etc/gss/mech <<EOF
eap-aes128 1.3.6.1.4.1.5322.22.1.17 mech_eap.so
eap-aes256 1.3.6.1.4.1.5322.22.1.18 mech_eap.so
cat >/usr/etc/gss/mech <<EOF
eap-aes128 1.3.6.1.4.1.5322.22.1.17 mech_eap.so
eap-aes256 1.3.6.1.4.1.5322.22.1.18 mech_eap.so
+eap-aes128 1.3.6.1.5.5.15.1.1.17 mech_eap.so
+eap-aes256 1.3.6.1.5.5.15.1.1.18 mech_eap.so
EOF
EOF
+
+[[!inline pages=testing-/gss-sample.mdwn]]