<html><head><style type="text/css"><!-- DIV {margin:0px;} --></style></head><body><div style="font-family:times new roman,new york,times,serif;font-size:10pt"><div style="font-family: times new roman,new york,times,serif; font-size: 10pt;"><font size="3">Hi,<br>as suggested, I'm working with exec module.<br>radiusd.conf:<br>...<br> exec {<br> post-auth:User-Password = `%{exec:/usr/local/etc/raddb/jradius.forward}`<br> wait = yes<br> input_pairs = request<br> }<br>...<br>the content of </font><font size="3">/usr/local/etc/raddb/jradius.forward script is just:<br>#!/bin/bash<br>echo 123456<br><br>so, the user's password that I'm
using is 123456(inserted at secureW2 Windows XP popup), but I'm yet receiving ciphered User-Password at destination custom app...<br><br>I have changing the content of </font><font size="3">jradius.forward script to<br></font><font size="3">#!/bin/bash<br>
echo 123456789<br><br>just to see if the password sended is the one returned by </font><font size="3">jradius.forward script, but all entries at radiusd -X shows:<br>...<br>Processing the post-auth section of radiusd.conf<br>...<br>rlm_jradius: packing attribute User-Password (type: 2; len: 6)<br></font>...<br><br><font size="3">Conclusion: the User-Password attribute is not been changed by the external script, once the length should be 9 ...<br><br>some idea about what is wrong?<br><br>one more point: I'm setting user's password at etc/raddb/users file (it mey be a problem, i mean ... does it fixing the password?).<br><br>thanks a lot, <br><br>Erico.<br><br></font><br><div style="font-family: times new roman,new york,times,serif; font-size: 12pt;">----- Mensagem original ----<br>De: Alan DeKok <aland@deployingradius.com><br>Para: FreeRadius users mailing list <freeradius-users@lists.freeradius.org><br>Enviadas: Quinta-feira, 22 de Março de 2007
5:29:24<br>Assunto: Re: Res: EAP-TTLS + Post-auth clear password<br><br><div>Erico Augusto wrote:<br><br>> I'm trying to forward username and password to my own app, using<br>> post-auth section, to perform user authentication, as described below<br>> ... is that possible?<br><br> Yes. See the "exec" module. Why do you think the pap module has<br>anything to do with it?<br><br> Alan DeKok.<br>--<br> <a target="_blank" href="http://deployingradius.com">http://deployingradius.com</a> - The web site of the book<br> <a target="_blank" href="http://deployingradius.com/blog/">http://deployingradius.com/blog/</a> - The blog<br>- <br>List info/subscribe/unsubscribe? See <a target="_blank" href="http://www.freeradius.org/list/users.html">http://www.freeradius.org/list/users.html</a><br></div></div><br></div></div><br>__________________________________________________<br>Fale com seus
amigos de graça com o novo Yahoo! Messenger <br>http://br.messenger.yahoo.com/ </body></html>