[FreeNX-kNX] One-time password authentication question
Schumacher, Felix
Felix.Schumacher at debeka.de
Thu Jan 19 09:04:35 UTC 2006
Hello,
Zitat von Nick Owen <nowen at wikidsystems.com>:
> I set up FreeNX on a server that already had PAM set up for WiKID auth
> via radius. The setting was for "sufficient" so ssh worked with both
> passwords and the OTP. FreeNX worked only with the passwords though.
> The first password request works, but it appears that FreeNX makes
> additional credential validation requests to the auth server, which of
FreeNX (at least in Version 0.4.5) does check your password against multiple
authentication daemons. Which can't be done with one time passwords. So you
have to force FreeNX to use your authentication service.
This could be done by using atached patch. It adds a configuration option
FORCE_LOGIN_METHOD=SSH in node.conf.
The other part sets the value LOGIN_SUCCESS=1, the LOGIN_METHOD to the value of
FORCE_LOGIN_METHOD and in case of SSH, it exports COMMAND_SSH.
Hope this helps
Felix
-------------- next part --------------
A non-text attachment was scrubbed...
Name: freenx-force-authentication-method.diff
Type: application/octet-stream
Size: 887 bytes
Desc: not available
URL: <http://mail.kde.org/pipermail/freenx-knx/attachments/20060119/c8312800/attachment.obj>
More information about the FreeNX-kNX
mailing list