> * Cryptocard has its own authentication server, but provides a PAM > module for Linux. Therefore it should be possible to use the PAM > passthru > FDS module mentioned here a while back: > http://cvs.fedora.redhat.com/viewcvs/ldapserver/ldap/servers/plugins/pam_passthru/?root=dirsec > > > * Cryptocard apparently supports a RADIUS style authentication. > Perhaps use SASL in some way that back ends on to RADIUS? > > Has anyone any other ideas or can suggest a best way of doing this? Does this help ? : http://www.cryptocard.com/index.cfm?pid=493&pagename=LDAP%20Authentication%20Example If you want to have LDAP client binds use cryptocard authentication then you would need a SASL plugin (or possibly PAM, if the exchange is one-way as in SecurID). Cryptocard folks don't seem to have considered this need in their literature (which seems strange since it would give them much wider application support without much work).
