"Patrick McShane" <[EMAIL PROTECTED]> wrote:
> Does anybody know of a way to get FreeRadius to handle either crypt OR
> clear text encryption schemes for the "pap" module?
It doesn't do it that well.
The module SHOULD do clear-text authentication by default. If
there's no 'User-Password', but a 'Crypt-Password' exists, then it
should do crypt authentication. If an 'MD5-Crypt-Password' exists,
then it should do MD5 crypt authentication.
> We have some passwords stored in the LDAP password attribute as clear
> text (to handle CHAP requests!!!) or they have a value like
> "{crypt}GHSN<*&SJJD" (previous migration from old UNIX passwords).
> Navis Radius currently looks at the preceding text tokens "{crypt}",
> "{plain}", or "{SHA}". For example the LDAP attribute "unixpassword"
> might contain:
I would suggest source code mods to rlm_pap.
Alan DeKok.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
