Ping a Specific Port

Question

hoberion

Asked: 2013-01-26 03:48:14 +0800 CST2013-01-26 03:48:14 +0800 CST 2013-01-26 03:48:14 +0800 CST

possible? radius server with active directory users and google authentication

772

We currently have an old RSA token - Radius environment we want to replace

Would this architecture be possible?

(this works, there are examples on the internet) Linux server Google Authentication Fee radius server

Now the new part: User list would get pulled from active directory, on the linux server the google authenticatior token would be (manually generated)

Or should we just create the users with the same name manually?

1 Answers

Voted

mricon · Answer 1 · 2013-01-26T05:48:09+08:00

mricon

2013-01-26T05:48:09+08:002013-01-26T05:48:09+08:00

Yes, this should be possible with totpcgi and freeradius, though we've not done it against AD but FreeIPA. We use this setup on our Cisco VPN appliances and users authenticate with their username and password+token (i.e. the same behaviour as RSA tokens).

I'd love to have more input on how well it works for others, especially if someone can provide documentation on how to drop-replace RSA infrastructure with totpcgi in a heterogeneous Linux-Windows environment. :) Our primary goal thus far has been implementing it for Linux servers.

1

possible? radius server with active directory users and google authentication

Can you pass user/pass for HTTP Basic Authentication in URL parameters?

Ping a Specific Port

Check if port is open or closed on a Linux server?

How to automate SSH login with password?

How do I tell Git for Windows where to find my private RSA key?

What's the default superuser username/password for postgres after a new install?

What port does SFTP use?

Command line to list users in a Windows Active Directory group?

What is a Pem file and how does it differ from other OpenSSL Generated Key File Formats?

How to determine if a bash variable is empty?