2008/1/11, Arran Cudbard-Bell <A.Cudbard-Bell@sussex.ac.uk>:
tnt@kalik.co.yu wrote:
Store cleartext passwords and all eap types will work. Real problem is the encrypted password not the eap type.
Ivan Kalik Kalik Informatika ISP
Dana 11/1/2008, "Sergio Belkin" <sebelk@gmail.com> piše:
2008/1/10, Ivan Kalik <tnt@kalik.co.yu>:
...
rlm_ldap: Added password
{SSHA}F8XliBuxscoShNf0k7RxlC7niB7ISswp in check items ...
rlm_eap_md5: User-Password is required for EAP-MD5 authentication
...
You can't use encrypted passwords with EAP-MD5.
http://deployingradius.com/documents/protocols/compatibility.html
Ivan Kalik Kalik Informatika ISP
Thanks Ivan! So what default eap type should I use in mixed environment (I mean: Linux and Windows Clientes)?
EAP-TTLS with PAP inner encryption.
Though you'd need to use SecureW2 or the Open SEA supplicant for the windows side.
Otherwise you'd need NT-Hashes for MSChap based methods
Sorry for the stupid and moron question, but how should I do that? Of course I don't ask you that you tell me the step by step, only a clue to follow... thanks in advance , or the password
stored in the clear.
TIA
-- Arran Cudbard-Bell (A.Cudbard-Bell@sussex.ac.uk)
-- -- Open Kairos http://www.openkairos.com Watch More TV http://sebelk.blogspot.com Sergio Belkin -