Is there a best practice around credential storage?

Coy Hile coy.hile at coyhile.com
Thu Dec 19 23:42:45 CET 2019


Hi all,

Seeing the comments that come up often about how to make various 
authentication methods work with password scheme X (for various values 
of authentication method and scheme) as well as the matrix here: 
http://deployingradius.com/documents/protocols/compatibility.html I'm 
left with a question.

Is it really industry standard that people store users' passwords in 
cleartext? It seems to be a requirement, but it is something that gives 
me pause, as to do so contravenes what are otherwise best practices.


-- 
Coy Hile
coy.hile at coyhile.com


More information about the Freeradius-Users mailing list