Hi, I was wondering how I should create an entry in the users file for a user that authenticates with CHAP. Normally I have entries like this: ausername Auth-Type := Local, User-Password == "apassword" This works for PAP requests, but is it also fine for CHAP? I actually need a method to let both PAP and CHAP succeed, it's up to the user to decide what to use. -- Thor Spruyt M: +32 475 67 22 65 E: thor.spruyt@telenet.be W: www.thor-spruyt.com
Thor Spruyt wrote:
Normally I have entries like this: ausername Auth-Type := Local, User-Password == "apassword"
Don't use Auth-Type. Use ':=', not '=='. user User-Password := "password" This will let PAP work, CHAP, MSCHAP, etc. See: http://deployingradius.com/documents/configuration/pap.html
I actually need a method to let both PAP and CHAP succeed, it's up to the user to decide what to use.
Tell the server what the "known good" password is, and the server will figure out the rest. I have a patch pending for 1.1.4 that adds "Cleartext-Password", and removes much of the confusion around putting User-Password in the "users" file, or other places in the configuration. Alan DeKok. -- http://deployingradius.com - The web site of the book http://deployingradius.com/blog/ - The blog
participants (2)
-
Alan DeKok -
Thor Spruyt