MSCHAPV2 + OpenLDAP
Martin Pauly
pauly at hrz.uni-marburg.de
Tue Aug 11 16:36:30 CEST 2020
Am 11.08.20 um 10:31 schrieb Клеусов Владимир Сергеевич via Freeradius-Users:
>> 2. Store your NT-hashed passwords there
> How do I do this ?
e.g. like this author recommends:
https://blog.atucom.net/2012/10/generate-ntlm-hashes-via-command-line.html
But you will need cleartext at some point. Actually, I see little use in
emplyoing a VPN solution that _only_ does MS-CHAPv2. As you can see,
you would need to convert all your passwords from _cleartext_.
IMO, you would be better off with a VPN solution that queries LDAP
directly or via RADIUS, but without fancy protocol diversions.
Greetings, Martin
--
Dr. Martin Pauly Phone: +49-6421-28-23527
HRZ Univ. Marburg Fax: +49-6421-28-26994
Hans-Meerwein-Str. E-Mail: pauly at HRZ.Uni-Marburg.DE
D-35032 Marburg
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 5391 bytes
Desc: S/MIME Cryptographic Signature
URL: <http://lists.freeradius.org/pipermail/freeradius-users/attachments/20200811/33452699/attachment-0001.bin>
More information about the Freeradius-Users
mailing list