Dear Gonzalez, Pedro,

crypt() cann't be use for MS-CHAP passwords. You should use some utility
to make NT-Password and/or LM-Password from cleartext password.

--Tuesday, June 4, 2002, 11:54:52 PM, you wrote to [EMAIL PROTECTED]:

>> 
>> What's the way to encrypt the passwords in the database. 
>> 
>> I am using...
>> 
>> mysql> update radcheck set value = encrypt('pptp2002') where id = 730;
>> 
>> +-----+----------+-------------+---------------+------+
>> | id  | UserName | Attribute   | Value         | op   |
>> +-----+----------+-------------+---------------+------+
>> | 732 | pptp     | Auth-Type   | MS-CHAP       | :=   |
>> | 730 | pptp     | NT-Password | uFdiBao.l.ijQ | :=   |
>> +-----+----------+-------------+---------------+------+
>> 
>> This is what I got:
>> ....
>> rlm_sql: Released sql socket id: 4
>>   modcall[authorize]: module "sql" returns ok
>>   modcall[authorize]: module "mschap" returns ok
>> modcall: group authorize returns ok
>>   rad_check_password:  Found Auth-Type MS-CHAP
>> auth: type "MS-CHAP"
>> modcall: entering group authenticate
>> rlm_mschap: Invalid NT Password text
>>   modcall[authenticate]: module "mschap" returns reject
>> modcall: group authenticate returns reject
>> ....
>> 
>> > -----Original Message-----
>> > From: 3APA3A [mailto:[EMAIL PROTECTED]]
>> > Sent: Tuesday, June 04, 2002 11:04 AM
>> > To: [EMAIL PROTECTED]; Gonzalez, Pedro
>> > Cc: '[EMAIL PROTECTED]'
>> > Subject: Re[4]: PPTP
>> > 
>> > 
>> > Dear Gonzalez, Pedro,
>> > 
>> > You  have  Password  attribute configures for user. It means 
>> > you need to
>> > have  mschap  in  authorize{}.  You  have  to  configure 
>> > NT-Password and
>> > LM-Password if you want to use MS-crypted passwords.
>> > 
>> > --Tuesday, June 4, 2002, 6:53:01 PM, you wrote to 
>> > [EMAIL PROTECTED]:
>> > 
>> 

GP> - 
GP> List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html


-- 
~/ZARAZA
������ �������� ���������� ����������.  (���)


- 
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

Reply via email to