FreeRADIUS and Novell universal password

[Graham Marsh]

You can't use NDS password because it's a one-way hash and therefore
not reversible. You must use UP with radius because it is reversible.
So, you need to investigate and fix your UP issues. There are tools
that will help such as checking the status of UP on multiple objects,
and even retrieving the UP, check the Novell coolsolutions site.
Basically if you can retrieve the UP with those tools, then radius can
too, if the tools report an error then you may get a better idea where
the problem is.

Note that existing users who only have NDS password need to login with
a current Novell Client in order to set the UP. Or, they need to
undergo a Change Password via some UP-aware mechanism such as LDAP
modify on userpassword.

As this isn't really FR problem, suggest you post in the novell
edirectory or NMAS forums if you require more help.

On Sun, Oct 5, 2008 at 10:11 PM, Jason Brown <jasonbrown at ferris.edu> wrote:
> I am seeing issues with users not authenticating correctly to our Novell
> eDirectory server.  When some users try to authenticate they are denied
> access due to errors with their universal password.  We have other systems
> that do not have this problem and am not sure why.  Is there a way to
> configure this to use the NDS password instead of the universal password?
> Thanks.