[Fedora-directory-users] cryptocard and FDS
David Boreham
david_list at boreham.org
Thu Sep 21 20:29:47 UTC 2006
> * Cryptocard has its own authentication server, but provides a PAM
> module for Linux. Therefore it should be possible to use the PAM
> passthru
> FDS module mentioned here a while back:
> http://cvs.fedora.redhat.com/viewcvs/ldapserver/ldap/servers/plugins/pam_passthru/?root=dirsec
>
>
> * Cryptocard apparently supports a RADIUS style authentication.
> Perhaps use SASL in some way that back ends on to RADIUS?
>
> Has anyone any other ideas or can suggest a best way of doing this?
Does this help ? :
http://www.cryptocard.com/index.cfm?pid=493&pagename=LDAP%20Authentication%20Example
If you want to have LDAP client binds use cryptocard authentication then
you would need a SASL plugin (or possibly PAM, if the exchange is one-way as
in SecurID). Cryptocard folks don't seem to have considered this need
in their literature (which seems strange since it would give them much wider
application support without much work).
More information about the Fedora-directory-users
mailing list