A client of mine wants to use radius with an ldap backend where the passwords are stored sha hashed. I see in the freeradius faq there is some mention of using PAP passwords, but when I look at the radius rfc 2138, I don't understand what is meant by pap passwords. Isn't the user-password always md5'd using the authenticator? Is there a way to send the access-request and not encrypt the password?
Thanks for any help, Lance - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
