I made a little progress on this. If put:
DEFAULT Auth-Type = PAP
in users
I can get pap to work with hashed passwds if they are hashed with
crypt. MD5 and so on all seem to fail. Pap either thinks they are the
wrong length or that they don't match? Crypt is certainly better then
plaintext. Any ideas why its not functioning with the other hashing
methods?
Thanks,
John
John Gray wrote:
Hi,
I have plain-text passwords coming from a pix firewall for vpn
authentication. I have SSHA hashed passwds stored in ldap. Can't I
hash the passwds from the pix and compare 'em the SSHA passwds from
ldap somehow?
It works fine if I put plain text passwords in ldap. But I don't
relish the thought of storing them plain text.
Thanks,
John
- List info/subscribe/unsubscribe? See
http://www.freeradius.org/list/users.html
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
