- This topic is empty.
January 20, 2009 at 9:24 am #41411
Hi, I’m a teacher, and i wish create a students’s hotspot.
Is possible to use the zeroshell’s radius to validate mikrotik hotspot users? If these they have been imported from a ldif file ? (about 600 users)
JordiJanuary 20, 2009 at 7:22 pm #47435imported_fulvioParticipant
Yes, the RADIUS server of Zeroshell (FreeRadius) can be used to authenticate Mikrotik users, but to import the LDIP files you should know the clear-text password.
FulvioJanuary 21, 2009 at 12:03 am #47436
is possible uncoment the lines in radius.conf and use local linux users?
# passwd = /etc/passwd
# shadow = /etc/shadow
# group = /etc/group
JordiJanuary 25, 2009 at 8:53 am #47437
Hello, we imported the users in clear-text password
The mikrotik hotspot shows “invalid username or password” and the radius logs shows these logs lines. The user “prova” is created from zeroshell user add and it works ok
22:15:38 Login incorrect (rlm_ldap: User not found): [malaman1] (from client mk1 port 2159017989 cli 00:1C:BF:91:C0:7B)
22:16:33 Login OK: [prova] (from client mk1 port 2159017991 cli 00:1C:BF:91:C0:7B)
here there is an ldif example
cn: de lospalotes
gecos: pepito de, lospalotes
Thanks a lot
CalmanJanuary 25, 2009 at 9:25 am #47438imported_fulvioParticipant
The authentication is based on Kerberos5 and not on the userPassword LDAP attribute. The easier solution is to use the cpw script to set the password. For example to set the fulvio’s password to “fulviopassword” use the following command:
/root/kerbynet.cgi/scripts/cpw fulvio “” “fulviopassword” NOCHECKPW
Now, you just have to write a script that automatically extracts usernames and passwords from the LDIF file and calls the cpw command.
FulvioJanuary 25, 2009 at 10:47 am #47439
thanks fluvio we work on it and we’ll post the results
- You must be logged in to reply to this topic.