[Openswan Users]

[Shalini Tadimeti]

 Hi,
 
 What if we want to send whole file containing   
parameters about the client machine such as version
name and stuff like that.XAUTH can be used only for
username and password, but I want to send lot more
data for the authentication purpose through that file.
That is where I am stuck.I have thought about using
payloads, but even that doesnt seem to be the right
solution.
  Can we use either identification payload or private
use payload for this purpose?

 Thanx and Regards,
 Shalini

 
  

--- Norman Rasmussen <norman at rasmussen.co.za> wrote:

> woops - please use reply all, i missed the first
> time around :-)
> 
> On 5/9/06, Shalini Tadimeti
> <shalinitadimeti at yahoo.co.in> wrote:
> > Can you please elaborate more about XAUTH? Its for
> > extra authentication , but what is PAM? XAUTH is
> used
> > more along with PAM.
> 
> XAUTH is an extra step of authentication users, see
>
http://wiki.openswan.org/index.php/XAUTH%20authenticator
> for some
> info.  I've never used openswan's XAUTH (server or
> client side), my
> only experience is using CheckPoint's client (with a
> Nokia server - I
> think).  CheckPoint have an 'altered' XAUTH
> authentication protocol,
> which openswan doesn't support (although there are
> some 3rd party
> client only patches available)
> 
> > I want to send some data before IPSEC SA (
> Security
> > Association) is established in Openswan.What I
> want to
> > know is how to go about it , what files do I need
> to
> > go through in Openswan and what kind of changes do
> I
> > do?
> 
> If you're looking to send a username + password
> combination then XAUTH
> is what you want.  If you're looking to send machine
> name, maybe
> assume that's the username or something.
> 
> --
> - Norman Rasmussen
>  - Email: norman at rasmussen.co.za
>  - Home page: http://norman.rasmussen.co.za/
> 



		
__________________________________________________________ 
Yahoo! India Answers: Share what you know. Learn something new. 
http://in.answers.yahoo.com