MD5 authentication
Hi all, The user passwords are stored in my SQL database and encrypted in MD5...Could anyone tell me how to authenticate them (CHAP, PAP....) ? I know that I have to change the "authentication" request but I really don't know where it is located... Many Thanks! Khalid
manIP wrote:
The user passwords are stored in my SQL database and encrypted in MD5...Could anyone tell me how to authenticate them (CHAP, PAP....) ?
PAP. http://deployingradius.com/documents/protocols/compatibility.html
I know that I have to change the "authentication" request but I really don't know where it is located...
In 1.1.7, read "radiusd.conf". Look for the "pap" module. Alan DeKok.
Thank you for your answers alan...and deployingradius.com,it's a real gold mine. I have checked out radiusd.conf and the rlm_pap manual pages and I think I was unclear. The password is sent in "clear" but is stored in MD5 (because of ethical reason, the password should not clearly appear in the database). I think I just need to change the authentication request...but I can't find it. Thanks for your help. On Nov 14, 2007 2:34 PM, Alan DeKok <aland@deployingradius.com> wrote:
manIP wrote:
The user passwords are stored in my SQL database and encrypted in MD5...Could anyone tell me how to authenticate them (CHAP, PAP....) ?
PAP.
http://deployingradius.com/documents/protocols/compatibility.html
I know that I have to change the "authentication" request but I really don't know where it is located...
In 1.1.7, read "radiusd.conf". Look for the "pap" module.
Alan DeKok. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
manIP wrote:
Thank you for your answers alan...and deployingradius.com,it's a real gold mine.
I'm trying to expand that into a book. So far, I'm (still) at about 150 pages of information I've seen *nowhere* else. But between work, FreeRADIUS and something called "family", there isn't much time left over for the book.
I have checked out radiusd.conf and the rlm_pap manual pages and I think I was unclear. The password is sent in "clear" but is stored in MD5 (because of ethical reason, the password should not clearly appear in the database). I think I just need to change the authentication request...but I can't find it.
You can't change the authentication request. It's controlled by the NAS. Alan DeKok.
On Nov 14, 2007 8:23 PM, Alan DeKok <aland@deployingradius.com> wrote:
manIP wrote:
Thank you for your answers alan...and deployingradius.com,it's a real gold mine.
I'm trying to expand that into a book. So far, I'm (still) at about 150 pages of information I've seen *nowhere* else. But between work, FreeRADIUS and something called "family", there isn't much time left over for the book.
I have checked out radiusd.conf and the rlm_pap manual pages and I think I was unclear. The password is sent in "clear" but is stored in MD5 (because of ethical reason, the password should not clearly appear in the database). I think I just need to change the authentication request...but I can't find it.
You can't change the authentication request. It's controlled by the NAS.
I'm sorry again, I wouldn't have said "authentication request" but "authentication SQL request" made by the freeradius server to the SQL database. I hope I was clear now. BTW, good luck for your book...
Hi,
I'm sorry again, I wouldn't have said "authentication request" but "authentication SQL request" made by the freeradius server to the SQL database.
its a check item request in the SQL table item operator value MD5-Password := MD5-value read sql.conf for more details alan
PAP. Password attribute should be MD5-Password and op :=. Also make sure that you are sending a PAP request: http://wiki.freeradius.org/index.php/FreeRADIUS_Wiki:FAQ#How_do_I_make_Windo... Ivan Kalik Kalik Informatika ISP Dana 14/11/2007, "manIP" <manvoip@gmail.com> piše:
Hi all,
The user passwords are stored in my SQL database and encrypted in MD5...Could anyone tell me how to authenticate them (CHAP, PAP....) ? I know that I have to change the "authentication" request but I really don't know where it is located...
Many Thanks! Khalid - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
participants (4)
-
A.L.M.Buxey@lboro.ac.uk -
Alan DeKok -
manIP -
tnt@kalik.co.yu