9 Feb
2007
9 Feb
'07
8:28 a.m.
Phil Mayers wrote: You'd still need to install something on the clients. SecureW2 will to TTLS with PAP inside the tunnel, which would work.
I installed SecureW2 and try PAP, but didn't understand that I need TTLS module with PAP. I will try this. Thanks
If your constraint is "no client software", you need the plaintext, NT/LM passwords or samba+ntlm_auth
If you install SecureW2 and use TTLS+PAP you can check your passwords against ANYTHING because PAP supplies the username/password to the radius server and obviously it can do any kind of hashing or callout with it. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html