Re: Help: PAP with Sha1

vishal_nitr vishal_nitr at
Fri Apr 20 14:29:03 CEST 2012

Hi Alan,    thanks for the mail. This is what we read about request authenticationAccess-Request arrives  When the packet arrives at the FreeRADIUS server it is indicated by the following part:rad_recv: Access-Request packet from host port 48698, 
id=73, length=57
     User-Name = "alice"
     User-Password = "passme"
     NAS-IP-Address =
     NAS-Port = 100We see that the incoming request contains four AVPs.Although the AVP User-Password is shown here in clear text, it was not transmitted to the server in clear text. FreeRADIUS uses the shared secret to encrypt and decrypt the value of the User-Password AVP.   This is what I am looking for. What is the place where RADIUS does decrypt operation.
Thanks and Regards,

Vishal Kotalwar,


From: alan buxey <A.L.M.Buxey at>
Sent: Fri, 20 Apr 2012 16:50:14 
To: "vishal_nitr at" <vishal_nitr at>, FreeRadius users mailing list <freeradius-users at>
Subject: Re: Help: PAP with Sha1

>        I tried changing few things in lib/radius.c to SHA1 but with no

>    success.

please post full putput form radiusd -X

regarding using SHA1 - easy, just ensure that your passwords are stored as SHA1

objects - the docs say how to do this


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <>

More information about the Freeradius-Users mailing list