Thanks for your reply Alexander! Actually I have already implemented a radius client that communicate with radius server using CHAP for SSH connection (i.e. I got one set of username and password for SSH login and another set for radius login). The radius server will store all the key user credentials.
To be more precise, the thread I posted yesterday is actually for SFTP and I would like to make use of the similar approach and the user credentials stored in radius server. Existing: SSH client -> SSH server -> My Radius Client <- CHAP-> Radius Server Proposed: SFTP client -> SFTP server <- PAM -> Radius Client <- CHAP-> Radius Server Apart from PAP, an alternative option for the authentication between radius server and radius client is PAM. I am not familiar with PAM. Do you how how secure it is? Will it send the clear-text password (or hased?) for the authentication? Thanks. -- View this message in context: http://freeradius.1045715.n5.nabble.com/SSH-to-use-CHAP-tp4685793p4690191.html Sent from the FreeRadius - User mailing list archive at Nabble.com. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
