| 4 |
- |
1 |
# -*- text -*-
|
|
|
2 |
#
|
|
|
3 |
# $Id$
|
|
|
4 |
|
|
|
5 |
# passwd module allows to do authorization via any passwd-like
|
|
|
6 |
# file and to extract any attributes from these files.
|
|
|
7 |
#
|
|
|
8 |
# See the "smbpasswd" and "etc_group" files for more examples.
|
|
|
9 |
#
|
|
|
10 |
# parameters are:
|
|
|
11 |
# filename - path to filename
|
|
|
12 |
#
|
|
|
13 |
# format - format for filename record. This parameters
|
|
|
14 |
# correlates record in the passwd file and RADIUS
|
|
|
15 |
# attributes.
|
|
|
16 |
#
|
|
|
17 |
# Field marked as '*' is a key field. That is, the parameter
|
|
|
18 |
# with this name from the request is used to search for
|
|
|
19 |
# the record from passwd file
|
|
|
20 |
#
|
|
|
21 |
# Attributes marked as '=' are added to reply_items instead
|
|
|
22 |
# of default configure_itmes
|
|
|
23 |
#
|
|
|
24 |
# Attributse marked as '~' are added to request_items
|
|
|
25 |
#
|
|
|
26 |
# Field marked as ',' may contain a comma separated list
|
|
|
27 |
# of attributes.
|
|
|
28 |
#
|
|
|
29 |
# hashsize - hashtable size. If 0 or not specified records are not
|
|
|
30 |
# stored in memory and file is read on every request.
|
|
|
31 |
# This configuration is *not* recommended, as it can be
|
|
|
32 |
# very slow. The "passwd" module reloads its configuration
|
|
|
33 |
# on HUP, so setting "hashsize = 0" is unnecessary.
|
|
|
34 |
#
|
|
|
35 |
# allowmultiplekeys - if many records for a key are allowed
|
|
|
36 |
#
|
|
|
37 |
# ignorenislike - ignore NIS-related records
|
|
|
38 |
#
|
|
|
39 |
# delimiter - symbol to use as a field separator in passwd file,
|
|
|
40 |
# for format ':' symbol is always used. '\0', '\n' are
|
|
|
41 |
# not allowed
|
|
|
42 |
#
|
|
|
43 |
|
|
|
44 |
# An example configuration for using /etc/passwd.
|
|
|
45 |
#
|
|
|
46 |
# We do NOT recommend using the configuration below. See the "unix"
|
|
|
47 |
# module, or the "pam" module for a cleaner way to get system passwords.
|
|
|
48 |
# Using this configuration means that the server will find *only* those
|
|
|
49 |
# passwords which are in /etc/passwd, and will *ignore* all of the
|
|
|
50 |
# passwords in NIS, LDAP, etc.
|
|
|
51 |
#
|
|
|
52 |
passwd etc_passwd {
|
|
|
53 |
filename = /etc/passwd
|
|
|
54 |
format = "*User-Name:Crypt-Password:"
|
|
|
55 |
hashsize = 100
|
|
|
56 |
ignorenislike = no
|
|
|
57 |
allowmultiplekeys = no
|
|
|
58 |
}
|