Using the various User-Password, Chap-Password, etc... with MySQL
Alan DeKok
aland at deployingradius.com
Sun Jul 29 21:55:25 CEST 2007
liran tal wrote:
> I was wondering if someone can clearly explain the use of different
> Password attributes when they're used in a scenario where MySQL is involved.
The different password attributes have nothing to do with MySQL.
Put a clear-text password in MySQL, and let the server deal with
different authentication protocols.
> The basic case of User-Password is clear.
> When the attribute in the radcheck table is User-Password then it's value is
> the password in clear text and the op is ==
No. See the recent documentation in 1.1.5 and following. The
attribute is Cleartext-Password, and the operator is :=.
> What about Cleartext-Password? I've added this attribute with op of := and
> value password in clear text and used radtest as a test, and it results in
> just re-transmission of Access-Request queries, and basically not working.
See the FAQ for "it doesn't work". The FAQ, README, INSTALL, etc. all
say to run the server in debugging mode.
> What about Chap-Password, MD5-Password, SHA1-Password, what are their
> corresponding values and op like?
Read the documentation in "man rlm_pap", as suggested in the README.
Alan DeKok.
More information about the Freeradius-Users
mailing list