I am new to this list and knid of new to the radius details.
I have installed freeradius_0.9.0_i386.deb and
freeradius-ldap_0.9.0_i386.deb.
I am trying to authenticate users that want to vpn in through our recently
put in place ldap directory
For the time being I am trying to test this only with PAP authentication.
When I tested it the authorization through LDAP worked fine.
However the PAP module when trying to authenticate gave me following
error:
rad_check_password: Found Auth-Type pap
auth: type "PAP"
modcall: entering group Auth-Type
rlm_pap: login attempt by "xxxx" with password xxxxxxx
rlm_pap: Using password "{SSHA}LrmnH//xO8fdaTV3SX3iHEretqloHy1gSBagcg=="
for user adani authentication.
rlm_pap: Using SHA1 encryption.
rlm_pap: Configured SHA1 password has incorrect length
modcall[authenticate]: module "pap" returns reject
modcall: group Auth-Type returns reject
auth: Failed to validate the user.
I thought that the {SSHA} prefix was supposed to be striped ( not sure
where though ) before the password comparison, but that is not happening.
Can somebody give me a clue???
Alban
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
