1 .TH SLAPD-PW-RADIUS 5 "RELEASEDATE" "OpenLDAP LDVERSION"
2 .\" Copyright 2015-2018 The OpenLDAP Foundation All Rights Reserved.
3 .\" Copying restrictions apply. See COPYRIGHT/LICENSE.
6 slapd-pw-radius \- Radius backend password module to slapd
13 .I /path/to/radius.conf
21 provides support for using a RADIUS infrastructure as backend to
22 verify the password provided in Simple Bind operations to OpenLDAP.
24 It does so by providing an additional password scheme for use in slapd:
28 RADIUS password scheme
31 Unlike in other password schemes, the value following the scheme is not
32 a - potentially hashed - password, but the name of the corresponding
33 RADIUS user in the RADIUS infrastructure.
35 This value, together with the password used in the Simple Bind operation,
36 will be sent to the RADIUS server for authentication.
38 If the RADIUS server successfully authenticates the user,
39 then the password verification succeeds, resulting in the LDAP Bind
42 Conversely, failed RADIUS authentications leads to failing LDAP Binds.
47 module needs no configuration beyond the additional
53 This filename is expected to point to a valid
58 After loading the module, the password scheme
60 will be recognised in values of the
65 Owing to its construction, using the
67 scheme as argument to the
71 does not make much sense, because of the scheme's construction.
73 This also applies to the use of the
82 To indicate that Simple Bind operations shall use the RADIUS user
84 when validating passwords against the RADIUS infrastructure,
85 set a user's LDAP attribute userPassword to:
88 userPassword: {RADIUS}johndoe
92 Due to the way the configuration is loaded (additional argument
93 to slapd.conf's moduleload directive), this module cannot be used
94 with table-driven configuration.
101 "OpenLDAP Administrator's Guide" (http://www.OpenLDAP.org/doc/admin/)
105 This manual page has been written by Peter Marschall.
108 is developed and maintained by The OpenLDAP Project (http://www.openldap.org/).
110 is derived from University of Michigan LDAP 3.3 Release.