[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Using SecurID for authentication



At 10:00 AM 1/19/2005, Howard Chu wrote:
>Josh wrote:
>
>>Has anyone hacked up openldap to authenticate against an ACE SecurID
>>server rather than using the normal password mechanisms?  My plan was
>>to implement it much like contrib/slapd-modules/passd/kerberos.c, but if
>>the work has already been done elsewhere, I'll gladly save myself
>>the effort.
>>
>>Another question:  is this the right way to go about it?  I have a feeling
>>it is, however there is a lot of talk about overlays these days.  The page
>>at Symas (http://www.symas.com/techtips/introtooverlays.html) implies
>>that overlays are mainly for modifying the way the backends work.
>> 
>Yes, this sounds like something you can add using a passwd module, not an overlay.

Or as a Cyrus SASL mechanism plugin.  IIRC, there is an existing
SASL SecureID mechanism.  For Cyrus SASL details, please use the
Cyrus SASL mailing list.


>-- 
> -- Howard Chu
> Chief Architect, Symas Corp.       Director, Highland Sun
> http://www.symas.com               http://highlandsun.com/hyc
> Symas: Premier OpenSource Development and Support