1 Sep
2005
1 Sep
'05
10:49 a.m.
"Sayantan Bhowmick" <sbhowmick@novell.com> wrote:
I am using FreeRADIUS version 1.0.2 and I am trying to authenticate users using CHAP authentication. Everything works and authentication goes through except that users are authenticated successfully( provided userid and password id correct) irrespective of what is entered for the "shared secret" in the client. Is this a defect? Should'nt the RADIUS server check whether the client is using the correct "shared secret"?
For CHAP, it can't. The *client* will see that the response packet isn't signed properly, and will reject it. Alan DeKok.