I have my shared secrets set in clients.conf and then on the cisco switch
using the 'radius-server' command:
http://www.cisco.com/en/US/docs/ios/12_2/security/configuration/guide/scfrad.html#wp1001000

Is this hard-coded approach incorrect? When I view the radiusd -X output
for a PAP request I dont have to get the shared secret right as its already
there. Hope that makes sense.

-Luke

On 28 Jan 2014 01:00, "Arran Cudbard-Bell" <a.cudbardb@freeradius.org> wrote:

On 28 Jan 2014, at 00:14, Luke Ramsden <lukermsdn@gmail.com> wrote:

> Thanks for the reply.
>
> If I use LDAP bind and PAP would that mean running 'radiusd -X' on the radius server would display users' AD password in plaintext when showing the contents of the Access-Request

Only if you get the shared secret right :)

-Arran

Arran Cudbard-Bell <a.cudbardb@freeradius.org>
FreeRADIUS Development Team

FD31 3077 42EC 7FCD 32FE 5EE2 56CF 27F9 30A8 CAA2


-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html