HPE Community
Operating System - HP-UX
1837263 Members
2713 Online
110115 Solutions
New Discussion

Re: create users login for radius

 
SOLVED
Go to solution
STALIN
Occasional Advisor

‎01-27-2005 12:37 AM

‎01-27-2005 12:37 AM

create users login for radius

hello,

I want to secur the login on my server.
My company have buy a server on technologie radius.
how created user radius on my server.

thanks
0 Kudos
Reply
5 REPLIES 5
Kent Ostby
Honored Contributor

‎01-27-2005 02:34 AM

‎01-27-2005 02:34 AM

Re: create users login for radius

I'm a bit unclear on your question.

If your question is how to create a new user, then you could use SAM .

type "sam" at the hp-ux prompt

then

Select
"Accounts for Users and Groups"
then Select
"Users"
then Select
"Actions"
then select
"Add"

If that doesnt answer the question, please repost with more details.

Thanks,

Oz
"Well, actually, she is a rocket scientist" -- Steve Martin in "Roxanne"
0 Kudos
Reply
Florian Heigl (new acc)
Honored Contributor

‎01-27-2005 02:46 AM

‎01-27-2005 02:46 AM

Re: create users login for radius

You're searching for the PAM/Radius module.

I did the same today, but the results were not really satisfying. HP doesn't offer such a product, so You will have to do it Yourself

Have a look at https://www.freebsd.uwaterloo.ca/twiki/bin/view/Freebsd/PamRadius

Here is the last person that tried it:

http://forums1.itrc.hp.com/service/forums/questionanswer.do?admit=716493758+1106840646102+28353475&threadId=52062

- Check the link to HP-UX AAA Server (RADIUS) - "The Release Notes contain the most recent release information, including the product requirements, LDAP compatibility, and supported clients for each version of the HP-UX AAA Server."

I haven't yet tried it.
yesterday I stood at the edge. Today I'm one step ahead.
0 Kudos
Reply
Peter Godron
Honored Contributor

‎01-27-2005 02:48 AM

‎01-27-2005 02:48 AM

Re: create users login for radius

HI,
are these the documents you are after:
http://docs.hp.com/en/internet.html#HP-UX%20AAA%20Server%20(RADIUS)

Regards
0 Kudos
Reply
STALIN
Occasional Advisor

‎01-27-2005 03:42 AM

‎01-27-2005 03:42 AM

Re: create users login for radius

I don't understand how to create a user with authentification radius.
0 Kudos
Reply
Florian Heigl (new acc)
Honored Contributor

‎01-27-2005 05:48 AM

‎01-27-2005 05:48 AM

Solution

Re: create users login for radius

I You use radius authentication, I'd say You create a standard user, but with * as password.
From what I understand this is different to NIS, as there are no maps containing home directory etc..

Radius is only for authentication, so let's say You got a user named user0001

he has an entry in /etc/group
users:100::user0001,user0002

he has an entry in /etc/passwd
user00001:*:10001:"A regular user:/home/user0001:/bin/ksh

he has no password entry in /etc/shadow or tcb

/etc/pam.conf or whatever must now be integrated with mod_pam_radius as a login facility and somehow be configured to ask the radius server.

now the radius server administrators must generate the user user0001 and assign a password.

if the user tries to log in, pam collects his username and password, checks if it has local authentication data (it hasn't) and tries to authenticate the user credentials against the radius server. if that succeeds the user is logged into the system.

I should add that passwd will probably not function.

OTOH - it seems You should read up on radius and PAM a lot before starting with this project and getting it compiled on hp-ux will be messy at (the very, very) best.
yesterday I stood at the edge. Today I'm one step ahead.
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.