Cleartext password between NAS and Radius Server
Hi, I am using PAP for radius authentication. I have a general question here. When we use PAP for user authentication, the password will be passed from user to NAS(radius client) as cleartext password. But how it is transmitted from NAS to Radius server. 1) As clear text password? or 2) The password is encrypted using the secret keyword(used in both radius client & server) and decrypted using secret key in server. Please correct me. I am seeing different answers in web pages. Regards, Dhandapani -- View this message in context: http://www.nabble.com/Cleartext-password-between-NAS-and-Radius-Server-tp240... Sent from the FreeRadius - User mailing list archive at Nabble.com.
kpani wrote:
When we use PAP for user authentication, the password will be passed from user to NAS(radius client) as cleartext password. But how it is transmitted from NAS to Radius server. 1) As clear text password? or 2) The password is encrypted using the secret keyword(used in both radius client & server) and decrypted using secret key in server. Please correct me. I am seeing different answers in web pages.
(2) See http://freeradius.org/rfc/attributes.html Click on User-Password. Alan DeKok.
participants (2)
-
Alan DeKok -
kpani