[CentOS] [OT] DHCP auth&auth software

Sun Oct 18 14:18:29 UTC 2009
Jonathan Moore <supermegatron at gmail.com>

On Sun, Oct 18, 2009 at 8:58 AM, Marko Vojinovic <vvmarko at gmail.com> wrote:
---8<----
> I imagine the following scenario: someone walks into my office building with a
> laptop (a colleague, a visitor, a guest, whoever), and hooks up onto the local
> net (wired or wireless). The server detects an unknown MAC address, issues a
> bogus dhcp lease which resolves all dns queries to a single internal web page
> with a form the user is supposed to fill in and send. After he does so, an
> administrator does a sanity check of the data the user provided, and grants or
> denies access. If access is granted, the user gets a new, unrestricted dhcp
> lease, which provides him with a normal access to local network.
--->8----
> So what are my options?

Maybe a Network Access Control solution, either from a vendor such as Cisco
or a "roll your own" with something like <http://freenac.org>.

The theory would be that clients are granted restricted access, then some checks
are made, and only if they pass, are they given real access.  Wouldn't
be to hard
to use a name somewhere in there to track WHO and not only WHAT is connecting.

-jonathan