|
发表于 2002-10-1 19:26:34
|
显示全部楼层
readme中有说明!
This is the README for mdc-ssd, a binary package which implements
the 802.1x protocol for port-access authentication. This permits
authentication to LANs using wireless or conventional ethernet access.
Release.
********
For release information please see the RELEASES document.
Introduction.
*************
The 802.1x protocol provides authentication to access IEEE Std 802 LAN
infrastructure. 802.1x is a draft standard and is based on the PPP-EAP
(Point-to-Point Extensible Authentication Protocol). 802.1x allows
a user to access a LAN port and obtain authentication from an
authentication server.
802.1x is in part a repackaging of EAP. EAP packets are wrapped
in EAPOL (EAP over LAN) packets. The extra fields of the EAPOL packets
can give added functionality suitable for wireless connection, such
as encryption key fields. The entire EAP packet may therefore be
encrypted.
EAP was proposed to support a variety of protocols. In practice,
only a subset is typically implemented. Similarly, in this implementation
of 802.1x only CHAP-MD5 and TLS are supported. TLS is in fact the
latest version of SSL, version 3.1. The mdc-ssd daemon has not been
tested against earlier versions of SSL.
802.1x defines two negotiating entities. The user's agent, which
is attempting to authenticate to the network, is called the supplicant.
The network's agent, which controls access of the supplicant, is
called the authenticator. The authenticator is typically a switch.
The authenticator, in spite of it's name, need not perform authentication.
That responsibility is generally handled remotely, by an authentication
server. This software acts as a supplicant, to allow the computer
upon which it is running access to the authenticator's network.
This software is binary and includes two executables:
1) mdc-ssd - the supplicant daemon.
2) mdc-ssc - a client program that can query state information
from the supplicant, and/or cause it to send start
or logoff packets.
Wireless Support
****************
The MDC supplicant has been tested in a wireless environment using
the following wireless NICs:
1) Cisco 340
2) Orinoco Gold with the wavelan2_cs_6.17BETA driver
Libraries.
*************
No libraries are required for this binary version. However, if you
are using TLS authentication, you may wish to download OpenSSL. This
will give you tools for making, converting and testing certificates.
The mdc-ssd daemon uses the OpenSSL library for TLS. You can obtain
OpenSSL from:
http://www.openssl.org/ (or ftp://ftp.openssl.org/source/)
Installation/Configuration.
***************************
mdc-ssd contains proprietary code from other Meetinghouse Data
Communications products, and is therefore only being released
in binary .rpm format. Sorry. This program is freely available
from the www.mtghouse.com website, but may not be otherwise
distributed.
Download the .rpm to any directory. From that directory type:
rpm -ivv <rpmfilename>
That's it! The mdc-ssd daemon and mdc-ssc client are in /usr/sbin.
Docs are under /usr/doc/mdc-ssd, configuration files and
sample certificate files are in /etc/mdc-ssd (the certificates will
not work for you!).
Running
******
Type:
mdc-ssd
by default, the daemon will detatch from the console.
Documentation
*************
Type "man mdc-ssd" to view the daemon's man page, and "man mdc-ssc"
to view the man page for the client.
The subdirectory startup contains readme and installation scripts.
Currently the only tested installation is Redhat Linux (version
6.2 or greater).
The directory /usr/doc/mdc-ssd/startup contains a README and
sample installation script. Additional installation instructions
are in the mdc-ssd man page.
这时一个命令行软件,只有在终端工作
先打入 mdc-ssd 试试
我没有这个设备,所以无法实验,你先试后再把情况说一下.
还有北南兄,这应该是免费软件. |
|