freeradius with multiple ldap servers

Sambuddho Chakravarty sc2516 at columbia.edu
Mon Jul 7 19:06:37 CEST 2008


Hello Ivan
 The ldap database has passwords have the '{crypt}' header. What I meant
by cleartext passwords is that I am typing in the password in clear text
in the radtest program.
Thanks
Sambuddho
On Mon, 2008-07-07 at 10:08 +0100, Ivan Kalik wrote:
> > Does that mean that I cannot authenticate against a LDAP server from a
> >freeradius server using cleartext passwords. 
> 
> But you are not using cleartext passwords. Passwords in ldap are
> encrypted.
> 
> >So the freeradius client
> >needs to send the password in encrypted format. But other programs which
> >using LDAP server to authenticate (eg. the pam_ldap ) takes as input the
> >cleartext password. Is there a solution to this ?
> 
> You need to add a header to the userPassword field. If you don't know
> what password header is and how to do that, ask on the ldap list.
> 
> Ivan Kalik
> Kalik Informatika ISP
> 
> -
> List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html




More information about the Freeradius-Users mailing list