17 Oct 12:01
Radius support
From: <Hector.Ortiz@...>
Subject: Radius support
Newsgroups: gmane.network.freenac.devel
Date: 2006-10-17 10:01:44 GMT
Subject: Radius support
Newsgroups: gmane.network.freenac.devel
Date: 2006-10-17 10:01:44 GMT
Hi, here is a short discussion about all the OpenSource RADIUS servers available to tie in 802.1X support in FreeNAC. Cistron RADIUS It is the predecessor of FreeRadius. It is still maintained because lots of people still use it, but it will not get any major new functionality (SQL, LDAP, etc) as FreeRadius. ICRADIUS A variant of Cistron, with MySQL support, and a web-based front end. Not much info available at the moment (web site has some technical difficulties). XtRADIUS Another Cistron variant, with extension for running external programs for accounting or authentication. This RADIUS performs authentication using either a radius users file, or the system password file, or an external script. Documentation is scarce and it doesn't appear to be actively maintained. OpenRADIUS Support for LDAP, SQL. The authentication can be fully customizable. Everything is a pluggable, completely under the control of the administrator. Lacks some documentation though. GNU-radius Authentication schemes somewhat limited (system database, internal database, SQL auth, PAM auth). Allows for SNMP management. Ability to rewrite RADIUS requests from various NASs to normalize them to a more understandable format, as well as the ability to completely customize the behavior of radius authentication and accounting based on NAS and user attributes. Mailing list not very active. Yard RADIUS Derived from the original Livingston radius server. It doesn't support MySQL and LDAP.Development seems not very active at the moment. Doesn't support multi-threading. JRADIUS It is not a standalone server, it's a java plugin for FreeRadius which talks to a Java server, allowing you to write RADIUS handlers in Java. FreeRadius Includes a PAM authentication module and Apache authentication modules. Comes with a PHP-based web user administration tool, support for LDAP, MySQL, PostgreSQL, Oracle, EAP, EAP-MD5, EAP-SIM, EAP-TLS, EAP-TTLS, EAP-PEAP and Cisco LEAP. Supports proxying, failover and load balancing. Support for writing own auth modules. Mailing list is pretty active. Documentation can be a pain in the ass though. There are some others (ie. PowerRadius, WinRadius) but they are not opensource :( It seems that the best option we have is FreeRadius. Does anyboby have a different point of view? Héctor ------------------------------------------------------------------------- Using Tomcat but need to do more? Need to support web services, security? Get stuff done quickly with pre-integrated technology to make your job easier Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo http://sel.as-us.falkag.net/sel?cmd=lnk&kid=120709&bid=263057&dat=121642
RSS Feed