Closed guangjung closed 2 weeks ago
You can set whatever password you want to use for a user in the ietf-netconf-server
data, client-authentication. If you need more complex mechanism for determining the password for a user, you should use keyboard-interactive
authentication method instead.
In addition to ietf-netconf-server and PAM,does it Non-interactive customization password authentication support ?
server_opts.passwd_auth_clb in old version is OK, and this feature is lost in new version. Why is it no longer supported?
It is not supported because it seemed redundant, since you can customize the password directly in the configuration.
It is not supported because it seemed redundant, since you can customize the password directly in the configuration.
If the account is stored in ietf-netconf-server configuration, the account is only used for netconf login, and is inconvenient for other protocol login.
Non-interactive customization password authentication is convenient for the following scenario: All user accounts and authentication are managed by a third-party service.
All user accounts and authentication are managed by a third-party service.
Yes, most often this service is PAM, which is natively supported by the keyboard-interactive
authentication method.
In the latest version, both keyboard-interactive
and password
SSH authentication methods can hit the PAM backend, right? That should provide sufficient flexibility for any reasonable use case, IMHO.
Only keyborad-interactive
method can use PAM, password
can alternatively use local system users directly.
Thanks for all support I could now perform SSH and TLS connections with the new version of Netopeer2. You can close this issue now.
Hi, Could the password customization authentication function be supported in newest version ( libnetconf2 and netopeer2 server)? or which new interface replace nc_server_ssh_set_passwd_auth_clb function of old version(( libnetconf2 v2.1.18 and netopeer2 server v2.1.36))?
the following code is from libnetconf2 (old version), passwd_auth_clb is customization auth callback
But new version ( libnetconf2 and netopeer2 server), this function is NOT supported. the following code is from libnetconf2 (new version)