[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Preoperation Plugin Questions

To: Julius Plenz <plenz@cis.fu-berlin.de>
Subject: Re: Preoperation Plugin Questions
From: Dan White <dwhite@olp.net>
Date: Wed, 23 Jan 2013 10:58:27 -0600
Cc: openldap-technical@openldap.org
Content-disposition: inline
In-reply-to: <20130123160027.GA404682@plenz.com>
References: <20130123160027.GA404682@plenz.com>
User-agent: Mutt/1.5.21 (2010-09-15)

On 01/23/13 17:00 +0100, Julius Plenz wrote:

Hi,

I'm writing an preoperation authentication plugin for OpenLDAP, but I
have trouble finding any documentation whatsoever on this. So most of
what I know comes from tutorials like this one from Oracle:
http://docs.oracle.com/cd/E19099-01/nscp.dirsvr416/816-6683-10/custauth.htm

P.S.: What I'm actually trying to achieve is to do RADIUS
authentification via an external library. But I want to send the
client's IP in a Calling-Station-Id attribute, so I cannot simply
write a password check function, right? If you got any ideas that are
better than a preop module, please tell me...


You should be able to accomplish this via a SASL mechanism (and possibly an
existing one), which would not require any code changes within slapd or
client libraries. See sasl_server_new(3) and its ipremoteport parameter.

--
Dan White

Follow-Ups:
- Re: Preoperation Plugin Questions
  - From: Howard Chu <hyc@symas.com>

References:
- Preoperation Plugin Questions
  - From: Julius Plenz <plenz@cis.fu-berlin.de>

Prev by Date: openldap overlays
Next by Date: Re: Preoperation Plugin Questions
Index(es):
- Chronological
- Thread