I've configured radius to use ldap for authorization and authentication.
Authorization works fine, but will allow access to authorized users without a correct password.
Why? ldap stores passwords using SSHA encryption.
Is there any way to:
a. provide radius with the key/salt so it can compare the passwords properly
b. have radius bind as the user to check that the password is correct?
c. option I haven't thought of yet?
Kyle Plimack