Re: Problems regarding MAC address authentication

permalink · #1 (**permalink**) 02-15-2007

--===============0488294612==
Content-Type: multipart/alternative;
boundary="----=_Part_122829_11319664.1171523484970"

------=_Part_122829_11319664.1171523484970
Content-Type: text/plain; charset=UTF-8; format=flowed
Content-Transfer-Encoding: 7bit
Content-Disposition: inline

ldap queries are working fine, below is the log..

Plz just explain the overview of how to enable mac address based
authentication where all the three parameters (uid, userPassword and
radiusCallingStationId are matched from the ldap database)..

PS: A paper presentation contest is to begin from tomorrow (www.*prastuti*.org)
in our college.. I will be highly grateful if i could provide wifi access
during the event... (at present am doing auth based on uid+password and need
to extend it to mac address).. plz help

12:38:37@jindal # ldapsearch -x -h 10.9.1.250 -D "uid=Manager,dc=itweb" -w
secret123 -LLL -vv -b "dc=itweb" "uid=ashimece"
ldap_initialize( ldap://10.9.1.250 )
filter: uid=ashimece
requesting: All userApplication attributes
dn: uid=ashimece,cn=Ece08,cn=Students,dc=itweb
uid: ashimece
userPassword:: amluZGFs
objectClass: account
objectClass: simpleSecurityObject
objectClass: top
objectClass: radiusprofile
cn: Ashim Dutta
radiusCallingStationId: 00-90-4B-ED-AB-52

12:38:58@jindal # ldapsearch -x -h 10.9.1.250 -D "uid=Manager,dc=itweb" -w
secret123 -LLL -vv -b "dc=itweb" "radiusCallingStationId=00-90-4B-ED-AB-52"
ldap_initialize( ldap://10.9.1.250 )
filter: radiusCallingStationId=00-90-4B-ED-AB-52
requesting: All userApplication attributes
dn: uid=ashimece,cn=Ece08,cn=Students,dc=itweb
uid: ashimece
userPassword:: amluZGFs
objectClass: account
objectClass: simpleSecurityObject
objectClass: top
objectClass: radiusprofile
cn: Ashim Dutta
radiusCallingStationId: 00-90-4B-ED-AB-52

On 2/13/07, Alan DeKok <aland@deployingradius.com> wrote:
>
> Shobhit Jindal wrote:
> > how to implement the above?(this is the question that eludes me)
> >
> > PS: i would really like to know why filtering the ldap database using
> > uid works and fails while using radiusCallingStationId
>
> See your LDAP documentation.
>
> Run LDAP queries by hand until you get the result you want, and then
> configure the server to use those queries.
>
> Alan DeKok.
> --
> http://deployingradius.com - The web site of the book
> http://deployingradius.com/blog/ - The blog
> -
> List info/subscribe/unsubscribe? See
> http://www.freeradius.org/list/users.html
>

--
Registerd Linux User #426561
-
Shobhit Jindal
B.Tech. Part-III,
Department Of Electronics Engineering, ITBHU
INDIA

------=_Part_122829_11319664.1171523484970
Content-Type: text/html; charset=UTF-8
Content-Transfer-Encoding: 7bit
Content-Disposition: inline

ldap queries are working fine, below is the log.. Plz just explain the overview of how to enable mac address based authentication where all the three parameters (uid, userPassword and radiusCallingStationId are matched from the ldap database)..
 PS: A paper presentation contest is to begin from tomorrow (www.prastuti.org) in our college.. I will be highly grateful if i could provide wifi access during the event... (at present am doing auth based on uid+password and need to extend it to mac address).. plz help
 12:38:37@jindal # ldapsearch -x -h <a href="http://10.9.1.250">10.9.1.250</a> -D "uid=Manager,dc=itweb" -w secret123 -LLL -vv -b "dc=itweb" "uid=ashimece" ldap_initialize( ldap://10.9.1.250 )
 filter: uid=ashimece requesting: All userApplication attributes dn: uid=ashimece,cn=Ece08,cn=Students,dc=itweb uid: ashimece userPassword:: amluZGFs objectClass: account objectClass: simpleSecurityObject
 objectClass: top objectClass: radiusprofile cn: Ashim Dutta radiusCallingStationId: 00-90-4B-ED-AB-52 12:38:58@jindal # ldapsearch -x -h <a href="http://10.9.1.250">10.9.1.250</a> -D "uid=Manager,dc=itweb" -w secret123 -LLL -vv -b "dc=itweb" "radiusCallingStationId=00-90-4B-ED-AB-52"
 ldap_initialize( ldap://10.9.1.250 ) filter: radiusCallingStationId=00-90-4B-ED-AB-52 requesting: All userApplication attributes dn: uid=ashimece,cn=Ece08,cn=Students,dc=itweb uid: ashimece userPassword:: amluZGFs
 objectClass: account objectClass: simpleSecurityObject objectClass: top objectClass: radiusprofile cn: Ashim Dutta radiusCallingStationId: 00-90-4B-ED-AB-52 <div>On 2/13/07,
Alan DeKok <<a href="mailto:aland@deployingradius.com">aland@depl oyingradius.com</a>> wrote:<blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;">
Shobhit Jindal wrote: > how to implement the above?(this is the question that eludes me) > > PS: i would really like to know why filtering the ldap database using > uid works and fails while using radiusCallingStationId
   See your LDAP documentation.   Run LDAP queries by hand until you get the result you want, and then configure the server to use those queries.   Alan DeKok. --   <a href="http://deployingradius.com">
http://deployingradius.com</a>       - The web site of the book   <a href="http://deployingradius.com/blog/">http://deployingradius.com/blog/</a> - The blog - List info/subscribe/unsubscribe? See <a href="http://www.freeradius.org/list/users.html">
http://www.freeradius.org/list/users.html</a> </blockquote></div> -- Registerd Linux User #426561 - Shobhit Jindal B.Tech. Part-III, Department Of Electronics Engineering, ITBHU 
INDIA

------=_Part_122829_11319664.1171523484970--

--===============0488294612==
Content-Type: text/plain; charset="us-ascii"
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
Content-Disposition: inline

-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
--===============0488294612==--

Thread Tools	Search this Thread
Show Printable Version Email this Page	Search this Thread: Advanced Search
Display Modes
Linear Mode Switch to Hybrid Mode Switch to Threaded Mode