User-Password, Cleartext-Password, Crypt-Password and others (2.0.0-pre1)
Hi, I have a question regarding the usage of various flavours of passwords with PAP module. When I run the server in debugging mode it complains: !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! !!! Replacing User-Password in config items with Cleartext-Password. !!! !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! !!! Please update your configuration so that the "known good" !!! !!! clear text password is in Cleartext-Password, and not in User-Password. !!! !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! (password (User-Password) is pulled out from the database using rlm_sql ). If I change the attribute to Cleartext-Password PAP can't find the 'known good' and reject the user. Is that suppose to work with rlm_perl? I've noticed the same problems with CHAP module. Again - is that supposed to work with new password attributes naming convention or should I stick with 'User-Password' for now? kind regards Pshem
Pshem Kowalczyk wrote:
I have a question regarding the usage of various flavours of passwords with PAP module. When I run the server in debugging mode it complains: ... (password (User-Password) is pulled out from the database using rlm_sql ).
If I change the attribute to Cleartext-Password PAP can't find the 'known good' and reject the user.
Are you using "Cleartext-Password := ..."?
Is that suppose to work with rlm_perl?
Yes.
I've noticed the same problems with CHAP module. Again - is that supposed to work with new password attributes naming convention or should I stick with 'User-Password' for now?
It works in the default configuration with the FAQ entries suggesting Cleartext-Password. If it doesn't work in your configuration, see "man rlm_pap". Alan DeKok.
participants (2)
-
Alan DeKok -
Pshem Kowalczyk