projects / mech_eap.git / blobdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | inline | side by side
use "26" as prefix for vendor attributes
[mech_eap.git] / mech_eap / README.samba4
diff --git a/mech_eap/README.samba4 b/mech_eap/README.samba4
index 748a575..e1e19fe 100644 (file)
--- a/mech_eap/README.samba4
+++ b/mech_eap/README.samba4
@@ -3,7 +3,8 @@ Notes on using Moonshot with Samba4. Replace paths as appropriate.
 Samba
 -----
 
-* Download Samba4 and apply patches for mechanism agnosticism
+* Download Samba4 and apply patches for mechanism agnosticism which are
+  available at http://www.padl.com/~lukeh/samba/
 * Join Samba as a member server or domain controller (only tested former)
 * Extract local service principal key to keytab (currently there do not
   appear to be tools to do this, but you can get the cleartext password
@@ -15,8 +16,8 @@ Shibboleth
 * Add a mapping from the PAC RADIUS attribute to urn:mspac: in the file
   /usr/local/etc/shibboleth/attribute-map.xml:
 
-  <GSSAPIAttribute name="urn:ietf:params:gss-eap:radius-avp urn:x-radius:1679163525"
-                   id="urn:mspac:" binary="true"/>
+  <GSSAPIAttribute name="urn:ietf:params:gssapi:aaa-radius 26.25622.133"
+   id="urn:mspac:" binary="true"/>
 
 FreeRADIUS
 ----------
Moonshot GSS-API mechanism