Re: [dhcwg] DHCP interconnected to RADIUS for AAA
Markus Schabel <markus.schabel@tgm.ac.at> Tue, 11 March 2003 15:59 UTC
Received: from www1.ietf.org (ietf.org [132.151.1.19] (may be forged)) by ietf.org (8.9.1a/8.9.1a) with ESMTP id KAA24664; Tue, 11 Mar 2003 10:59:51 -0500 (EST)
Received: from www1.ietf.org (localhost.localdomain [127.0.0.1]) by www1.ietf.org (8.11.6/8.11.6) with ESMTP id h2BGDAO09096; Tue, 11 Mar 2003 11:13:10 -0500
Received: from ietf.org (odin.ietf.org [132.151.1.176]) by www1.ietf.org (8.11.6/8.11.6) with ESMTP id h2BGCMO09051 for <dhcwg@optimus.ietf.org>; Tue, 11 Mar 2003 11:12:22 -0500
Received: from mail.tgm.ac.at (ietf-mx.ietf.org [132.151.6.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id KAA24588 for <dhcwg@ietf.org>; Tue, 11 Mar 2003 10:58:13 -0500 (EST)
Received: from localhost (mail [127.0.0.1]) by mail.tgm.ac.at (Postfix) with ESMTP id 5B41F6E19F for <dhcwg@ietf.org>; Tue, 11 Mar 2003 17:00:19 +0100 (CET)
Received: from mail ([127.0.0.1]) by localhost (mail [127.0.0.1:10026]) (amavisd-new) with ESMTP id 17787-07 for <dhcwg@ietf.org>; Tue, 11 Mar 2003 17:00:18 +0100 (CET)
Received: from mail.tgm.ac.at (mail [127.0.0.1]) by mail (AvMailGate-2.0.1.6) id 18107-082572A5; Tue, 11 Mar 2003 17:00:17 +0100
Received: from tgm.ac.at (chello062178168036.13.14.vie.surfer.at [62.178.168.36]) by mail.tgm.ac.at (Postfix) with ESMTP id A411F6DF09 for <dhcwg@ietf.org>; Tue, 11 Mar 2003 17:00:17 +0100 (CET)
Message-ID: <3E6E0804.70603@tgm.ac.at>
Date: Tue, 11 Mar 2003 17:00:04 +0100
From: Markus Schabel <markus.schabel@tgm.ac.at>
User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.2.1) Gecko/20021226 Debian/1.2.1-9
X-Accept-Language: en
MIME-Version: 1.0
To: dhcwg <dhcwg@ietf.org>
Subject: Re: [dhcwg] DHCP interconnected to RADIUS for AAA
References: <905A1C4ABF353F4C8CC16FA9F53DD0D6322806@trimail2>
In-Reply-To: <905A1C4ABF353F4C8CC16FA9F53DD0D6322806@trimail2>
Content-Type: text/plain; charset="us-ascii"; format="flowed"
Content-Transfer-Encoding: 7bit
X-AntiVirus: checked by AntiVir MailGate (version: 2.0.1.6; AVE: 6.18.0.2; VDF: 6.18.0.13; host: tgm.ac.at)
Content-Transfer-Encoding: 7bit
Sender: dhcwg-admin@ietf.org
Errors-To: dhcwg-admin@ietf.org
X-BeenThere: dhcwg@ietf.org
X-Mailman-Version: 2.0.12
Precedence: bulk
List-Unsubscribe: <https://www1.ietf.org/mailman/listinfo/dhcwg>, <mailto:dhcwg-request@ietf.org?subject=unsubscribe>
List-Id: <dhcwg.ietf.org>
List-Post: <mailto:dhcwg@ietf.org>
List-Help: <mailto:dhcwg-request@ietf.org?subject=help>
List-Subscribe: <https://www1.ietf.org/mailman/listinfo/dhcwg>, <mailto:dhcwg-request@ietf.org?subject=subscribe>
Content-Transfer-Encoding: 7bit
Chen, Weijing wrote:
> Questions for DHCP experts:
>
> 1) Does today's DHCP protocol specification support the client
> authentication by user@domain and password? If not, is it possible to
> extend it?
>
>
> 2) Is there any DHCP server implementation of obtaining IP address
> assignment through RADIUS protocol (i.e. IP address pool managed by RADIUS)?
Maybe 802.1x is a solution for you? There you have an authentication on
the switch-PORT (which could be done with a RADIUS-backend), and *after*
you are authenticated the port is open and you can communicate with the
network - you can only communicate with your DHCP *after* you passed the
authentification-process.
If your RADIUS uses LDAP as backend-database you probably can have some
uid-password-mac-ip-mappings stored in the database, and DHCP is able
(at least with a patch) to use LDAP as configuration-base.
> --
^ correct quotes are ^-- $ (note the *space*)
regards
--
\\\ ||| /// _\=/_
( @ @ ) (o o)
+--------oOOo-(_)-oOOo--------------------------oOOo-(_)-oOOo------+
| Markus Schabel TGM - Die Schule der Technik www.tgm.ac.at |
| IT-Service A-1200 Wien, Wexstrasse 19-23 net.tgm.ac.at |
| markus.schabel@tgm.ac.at Tel.: +43(1)33126/316 |
| markus.schabel@members.fsf.org Fax.: +43(1)33126/154 |
| FSF Associate Member #597, Linux User #259595 (counter.li.org) |
| oOOo Yet Another Spam Trap: oOOo |
| ( ) oOOo yast@tgm.ac.at ( ) oOOo |
+--------\ (----( )--------------------------\ ( -----( )-----+
\_) ) / \_) ) /
(_/ (_/
Computers are like airconditioners:
They stop working properly if you open windows.
_______________________________________________
dhcwg mailing list
dhcwg@ietf.org
https://www1.ietf.org/mailman/listinfo/dhcwg
- [dhcwg] DHCP interconnected to RADIUS for AAA Chen, Weijing
- RE: [dhcwg] DHCP interconnected to RADIUS for AAA Barr Hibbs
- RE: [dhcwg] DHCP interconnected to RADIUS for AAA Barr Hibbs
- Re: [dhcwg] DHCP interconnected to RADIUS for AAA Shankar Agarwal
- Re: [dhcwg] DHCP interconnected to RADIUS for AAA Erik Nordmark
- Re: [dhcwg] DHCP interconnected to RADIUS for AAA John Schnizlein
- Re: [dhcwg] DHCP interconnected to RADIUS for AAA Markus Schabel
- RE: [dhcwg] DHCP interconnected to RADIUS for AAA Chen, Weijing
- Re: [dhcwg] DHCP interconnected to RADIUS for AAA Prakash Jayaraman
- Re: [dhcwg] DHCP interconnected to RADIUS for AAA Erik Nordmark
- Re: [dhcwg] DHCP interconnected to RADIUS for AAA Ralph Droms
- RE: [dhcwg] DHCP interconnected to RADIUS for AAA Chen, Weijing
- Re: [dhcwg] DHCP interconnected to RADIUS for AAA Yoshihiro Ohba
- RE: [dhcwg] DHCP interconnected to RADIUS for AAA Gilles, Philippe Bernard