This is the PAM to RADIUS authentication module. It allows any Linux, OSX or Solaris machine to become a RADIUS client for authentication and password change requests.
C M4 Shell Makefile HTML
Latest commit d063d8b May 17, 2016 @alandekok alandekok Check for too long lines
Failed to load latest commit information.
m4 Add basic autoconf script Mar 6, 2014
src
.gitignore Add basic autoconf script Mar 6, 2014
.travis.yml
Changelog Note 1.4.0 Dec 17, 2014
INSTALL Commit of version 1.3.17 Oct 24, 2012
LICENSE Commit of version 1.3.17 Oct 24, 2012
Makefile
README.rst Update README.rst Apr 4, 2014
TODO
USAGE add force_prompt option to enforce new password prompt for use with T… Nov 26, 2014
VERSION Bump to 1.4.1 Apr 22, 2015
acinclude.m4 Add basic autoconf script Mar 6, 2014
aclocal.m4 Add basic autoconf script Mar 6, 2014
config.guess
config.sub
configure Fix invocation of test. Sep 26, 2015
configure.ac Fix invocation of test. Sep 26, 2015
index.html Commit of version 1.3.17 Oct 24, 2012
install-sh
pam_radius_auth.conf Commit of version 1.3.17 Oct 24, 2012
pam_radius_auth.spec Bump version, minor changes. Apr 22, 2015
pamsymbols.ver build: use GCC for build, and ensure that unneeded symbols are not ex… Feb 23, 2013

README.rst

pam_radius

BuildStatus

This is the PAM to RADIUS authentication module. It allows any Linux, OSX or Solaris machine to become a RADIUS client for authentication and password change requests. You will need to supply your own RADIUS server to perform the actual authentication.

The latest version has a simple merger of the original pam_radius session accounting code which will work only on Linux.

See INSTALL for instructions on building and installing this module. It has been successfully used it for RADIUS authentication on RedHat 4.2, RedHat 5.x, RedHat 6.x, Solaris 2.6 and OSX 10.9.1.

A number of options are supported by this module. See USAGE for more details.

Care should be taken when configuring RADIUS authentication. Your RADIUS server should have a minimal set of machines in it's 'clients' file. The server should NOT be visible to the world at large, but should be contained behind a firewall. If your RADIUS server is visible from the Internet, a number of attacks become possible.

Any additional questions can be directed to the FreeRADIUS user's mailing list http://freeradius.org/list/users.html.

For the latest version and updates, see the main web or ftp site: http://www.freeradius.org/ ftp://ftp.freeradius.org/pub/radius/

The pam_radius_auth module based on an old version of Cristian Gafton's pam_radius.c, and on the RADIUS Apache module.

The source contains a full suite of RADIUS functions, instead of using libpwdb. It makes sense, because we want it to compile out of the box on Linux and Solaris 2.6.

There are minimal restrictions on using the code, as set out in the disclaimer and copyright notice in pam_radius_auth.c.

Building it is straightforward: use GNU make, and type make. If you've got some other weird make, you'll have to edit the Makefile to remove the GNU make directives 'ifeq', 'else', etc.

Alan DeKok <aland@freeradius.org>