PAM can only handle cleartext passwords. Whatever it plugs into may or may not actually store cleartext passwords, but an app must send a cleartext password to PAM, and some PAM does whatever it is it does. Apps do not retrieve passwords from PAM, they send it one and ask if it is correct (amongst other things). mschap does not send cleartext passwords across the wire - that is the point. Thus, mschap and PAM are mutually exclusive.
Where are your username/passwords stored? How are they stored? If they are stored hashed (as in unix files), you can only use cleartext exchange across the wire. On Sun, 2004-03-07 at 20:25, Justin D Davis wrote: > Here's the Scenario, I want to use PAM to do the authentication of WinXP > machines. > > When I just set the authtype to PAM the thing says that no password info > was sent to PAM > > I have xp setup to use PEAP mschapv2 > > I want a specific mode of operation, and since I can't figure out how > mschapv2 is supposed to get passwords from a database or anything or wtf? > here is what I want the thing to do: > > turn on machine, login, insert WNIC > find AP > Prompted for userid/password > enter info > server then uses PAM to verify information > sends accept/reject > > Can someone tell me what I need to do to make this happen? This is part of > a much larger project, and I have been trying to make this work for WAY too > long. > - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
