Password Policies?

[Ivan Kalik]

> A concern was put forward regarding password policies for policies stored
> in
> a radius server. Now, policies like "Must be 8 characters" and "must have
> 2
> numbers" can be handled easily enough in form processing on some sort of
> front end, however, is it possible have a radius password expire after a
> set
> period of time,

Yes.

> and then send back a specific message saying that the
> password has expired? (ie one month?)

Yes. The only problem is that most supplicants will ignore this message
and never display it to the user.

Ivan Kalik
Kalik Informatika ISP