Matt,
Thanks for the response. We are using freeradius as our radius front
end. I will take a close look at the PAP/CHAP section of the documentation.
Thanks for the lead.
Ryan Lininger
Network Systems Engineer
Denison University
p 740.587.6229
f 740.587.5722
[EMAIL PROTECTED]
Matthew Gracie wrote:
Ryan Lininger wrote:
I could use some help understanding the password storage situation as it
relates to LDAP, radius, and 802.1x. Currently we store hashes of
passwords in an LDAP database that is used for user authentication. I
would like to implement WPA on our wireless network but in my reading
all the explanations I have come across state that you have to store
user passwords in clear text rather then hash form.
I think it's dependent on how you're implementing your RADIUS server;
we've done testing with FreeRADIUS authenticating to a SunONE LDAP,
which is storing everything hashed, and it works fine.
Check out the documentation for your RADIUS server, specifically the
section that documents the differences between PAP and CHAP authentication.
--Matt
**********
Participation and subscription information for this EDUCAUSE Constituent Group
discussion list can be found at http://www.educause.edu/groups/.
