| Title: | Terminal Servers |
| Notice: | See Note 2 for Directory of important notes. Please use keywords. |
| Moderator: | LAVC::CAHILL�ON |
| Created: | Tue May 14 1991 |
| Last Modified: | Fri Jun 06 1997 |
| Last Successful Update: | Fri Jun 06 1997 |
| Number of topics: | 3547 |
| Total number of notes: | 12300 |
A customer of ours is planning to use a DECserver with a leased line to
each PC. The security mechanism he would like to implement is CHAP only or
CHAP in conjunction with the RADIUS server.
However he wants to have the authentication happen on a timed basis,
say, every 10 minutes or so. Can we do this with CHAP only or
CHAP/RADIUS? If not, how do we guarantee on-going authenticity?
Thanks for your help
Jeannie
| T.R | Title | User | Personal Name | Date | Lines |
|---|---|---|---|---|---|
| 3468.1 | I can't think of a way to do this with current software. | IROCZ::D_NELSON | Dave Nelson LKG1-3/A11 226-5358 | Mon Mar 17 1997 22:54 | 16 |
RE: .0
> However he wants to have the authentication happen on a timed basis,
> say, every 10 minutes or so. Can we do this with CHAP only or
> CHAP/RADIUS? If not, how do we guarantee on-going authenticity?
I presume it's the DECserver that is interested in continual authentication
of the PC, and not the other way around. This would require the DECserver
(DNAS) to implement periodic CHAP re-authentication. We do not currently
have this feature. Most PC clients will respond properly to mid-session
challenges.
Regards,
Dave
| |||||