Important Notice: Our web hosting provider recently started charging us for additional visits, which was unexpected. In response, we're seeking donations. Depending on the situation, we may explore different monetization options for our Community and Expert Contributors. It's crucial to provide more returns for their expertise and offer more Expert Validated Answers or AI Validated Answers. Learn more about our hosting issue here.

Can the ZeroShell Captive Portal simultaneously use multiple authentication sources?

authentication captive portal simultaneously sources zeroshell
0
Posted

Can the ZeroShell Captive Portal simultaneously use multiple authentication sources?

0 CommentsAdd a Comment

1 Answer

0

Yes, it can. The user must choose to which domain it belongs on the web login page. Based on this choice, the web login server can contact the correct authentication provider. The choice of domain can occur using the list box in the web login page or using a username in the format username@DOMAIN • I am afraid that an impostor, using a spoofed IP address, can replace the web login server with a fake one and trick the gateways into making them authorised clients that shouldn’t be there. Is there any danger of this for ZeroShell Captive Portals? No, there is no danger of this because the web login server and the captive gateways, which compose the same infrastructure, share a secret (a Shared Secret to be configured by the administrator). After the web login server authenticates the user via Kerberos 5 or RADIUS, it responds to the gateway via an encrypted packet with AES256 using the shared secret as the key. This packet, called the Authenticator, contains the complete domain username,

0 CommentsAdd a Comment

Related Questions

What is your question?

*Sadly, we had to bring back ads too. Hopefully more targeted.

Experts123