From owner-freebsd-net@FreeBSD.ORG Thu Aug 29 08:17:03 2013 Return-Path: Delivered-To: net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [8.8.178.115]) (using TLSv1 with cipher ADH-AES256-SHA (256/256 bits)) (No client certificate requested) by hub.freebsd.org (Postfix) with ESMTP id 33BCA637; Thu, 29 Aug 2013 08:17:03 +0000 (UTC) (envelope-from talayeh.asadi@gmail.com) Received: from mail-ie0-x233.google.com (mail-ie0-x233.google.com [IPv6:2607:f8b0:4001:c03::233]) (using TLSv1 with cipher ECDHE-RSA-RC4-SHA (128/128 bits)) (No client certificate requested) by mx1.freebsd.org (Postfix) with ESMTPS id EF3F72E1F; Thu, 29 Aug 2013 08:17:02 +0000 (UTC) Received: by mail-ie0-f179.google.com with SMTP id m16so138942ieq.38 for ; Thu, 29 Aug 2013 01:17:02 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:reply-to:sender:in-reply-to:references:from:date :message-id:subject:to:content-type; bh=qepuzPMG2uo+0rXT3e3tnZmt6d0oVkbE/4WldObjjE0=; b=IR2nZocswP1rWvL/g+z/j8xKh1Q2JkzaNCUWoh5zyY4DX+FEIgwEN7t5KSN1u8OfY+ IgoH7k8U9DXlyAZKznwzRoYEeoZETUDl/y/jlsJ6r0coCyUec+HP9BB62g9LrNH6IVjD 0avwy+3NSjUfE4jL3tBT6ZaFQ99BL8owqYRMkE29PdbEkl1vgLEMSPpftqxm4KHYva1T t/dmU6vQVsI1DS9209buC/yZjObYsauQgQe2kEgHetvfGJdc57QWWB5ELo96/oh68EO7 vDkcIFyzFYqt/AEfngs0kjAExvjzT7nD+UY/ukOLGJKb2i3ObcpqzYpYu4WgRW5080Sz TK5A== X-Received: by 10.50.23.16 with SMTP id i16mr1178053igf.50.1377764222424; Thu, 29 Aug 2013 01:17:02 -0700 (PDT) MIME-Version: 1.0 Sender: talayeh.asadi@gmail.com Received: by 10.42.153.8 with HTTP; Thu, 29 Aug 2013 01:16:42 -0700 (PDT) In-Reply-To: References: From: takCoder Date: Thu, 29 Aug 2013 12:46:42 +0430 X-Google-Sender-Auth: --i8uKSVtRi7TVeziDJphz8vW8k Message-ID: Subject: Re: telnet authentication using RADIUS To: Freebsd-net , FreeBSD Questions Content-Type: text/plain; charset=ISO-8859-1 X-Content-Filtered-By: Mailman/MimeDel 2.1.14 X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.14 Precedence: list Reply-To: tak.official@gmail.com List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 29 Aug 2013 08:17:03 -0000 hi again.. pardon me, but I still have not find anything to solve my problem with using pam/telnetd.. my problem is: I need pam.d/telnetd to be always used as telnet aaa configs.. but when a non-sra telnet connection is created, pam.d/login is used for that telnet session's aaa configurations.. is there any way to do an integration? any ideas?? please let me know of any point you may know about this.. thank you so much :) Best Regards, takCoder On Wed, Aug 14, 2013 at 2:38 PM, takCoder wrote: > hi all, > > I need to apply radius authentication for my remote connections. For ssh, > I have no problems, as I use pam.d/sshd file to add pam_radius.so entry.. > > but for telnet I've faced a problem.. as I have seen, for non-SRA telnet > connections, telnet authentication will be done via pam.d/login rather than > pam.d/telnetd.. and this depends on telnet client as well rather than just > my server.. > > I need it to always apply pam.d/telnetd file for all telnet > authentications, so i can separate my remote authentication policies from > local ones.. > > am I right with the facts I said above about telnet? > Do you know of any tip or trick on this?? any ideas are really > appreciated.. > Thank you :) > > Best Regards, > t.a.k >