Hi,<br><br>I can't do that the Cisco won't allow it through. Is pap the only way to use /etc/passwd?<br><br>Thanks,<br><br><div><span class="gmail_quote">On 8/16/07, <b class="gmail_sendername">Nicholas Hall</b> <
<a href="mailto:ngharo@gmail.com">ngharo@gmail.com</a>> wrote:</span><blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;"><span class="q">On 8/15/07,
<b class="gmail_sendername">Kelly Ormsby</b> <<a href="mailto:kelly7478@gmail.com" target="_blank" onclick="return top.js.OpenExtLink(window,event,this)">kelly7478@gmail.com</a>> wrote:<div><span class="gmail_quote">
</span><blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;">
Hi all,<br><br>I've installed freeradius 1.1.6 on Fedora core 2 (kernel 2.6.5-1.358) (I can't upgrade please don't go there). I did a basic configure/make/make install.<br><br>The only changes to the default configuration is adding an entry to the
clients.conf file to allow requests from the Cisco VPN gateway. So far as I can tell CHAP and CHAPv2 should work straight out of the box (as per this page <a href="http://deployingradius.com/documents/configuration/auth_type.html" target="_blank" onclick="return top.js.OpenExtLink(window,event,this)">
http://deployingradius.com/documents/configuration/auth_type.html</a>).<br><br>I've tried to authenticate using a local /etc/passwd user, and I get the output posted below. Is the default configuration enough for it to consult the /etc/passwd files (I thought that is what "DEFAULT Auth-Type = System" did?) or is there something else I need to add. Can CHAP (or CHAPv2) use /etc/passwd? I'm a little confused about the differences and I'm sure thats not helping :)
<br><br>I'd really rather not list the users individually in the users file, I'd like there to still only be one place to add users, so I'd like to use /etc/passwd file only. I apologise if there is documentation listed on this, I really feel that I've searched everywhere I can and no one seems to give real details.
<br></blockquote></div><br></span>CHAP requires a clear text password. Tell your client to use PAP. I believe it will work without any configuration on the server.<br clear="all"><span class="sg"><br>-- <br>Nicholas Hall
<br><a href="mailto:ngharo@gmail.com" target="_blank" onclick="return top.js.OpenExtLink(window,event,this)">
ngharo@gmail.com</a><br>262.208.6271
</span><br>-<br>List info/subscribe/unsubscribe? See <a onclick="return top.js.OpenExtLink(window,event,this)" href="http://www.freeradius.org/list/users.html" target="_blank">http://www.freeradius.org/list/users.html</a>
<br></blockquote></div><br><br clear="all"><br>-- <br>Kelly Ormsby<br>Senior Unix Systems Administrator<br><br>Email: <a href="mailto:kelly7478@gmail.com">kelly7478@gmail.com</a><br>Mobile: 0417 910 801