SSH Logins to Cisco Switch. RADIUS/Active Directory
Luke Ramsden
lukermsdn at gmail.com
Tue Jan 28 10:50:52 CET 2014
I have my shared secrets set in clients.conf and then on the cisco switch
using the 'radius-server' command:
http://www.cisco.com/en/US/docs/ios/12_2/security/configuration/guide/scfrad.html#wp1001000
Is this hard-coded approach incorrect? When I view the radiusd -X output
for a PAP request I dont have to get the shared secret right as its already
there. Hope that makes sense.
-Luke
On 28 Jan 2014 01:00, "Arran Cudbard-Bell" <a.cudbardb at freeradius.org>
wrote:
>
> On 28 Jan 2014, at 00:14, Luke Ramsden <lukermsdn at gmail.com> wrote:
>
> > Thanks for the reply.
> >
> > If I use LDAP bind and PAP would that mean running 'radiusd -X' on the
> radius server would display users' AD password in plaintext when showing
> the contents of the Access-Request
>
> Only if you get the shared secret right :)
>
> -Arran
>
> Arran Cudbard-Bell <a.cudbardb at freeradius.org>
> FreeRADIUS Development Team
>
> FD31 3077 42EC 7FCD 32FE 5EE2 56CF 27F9 30A8 CAA2
>
>
> -
> List info/subscribe/unsubscribe? See
> http://www.freeradius.org/list/users.html
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.freeradius.org/pipermail/freeradius-users/attachments/20140128/92412de8/attachment.html>
More information about the Freeradius-Users
mailing list