Suggest the following patch for LDAP+EAP-TTLS+PAP+CRYPT

Alan DeKok aland at
Mon Nov 6 16:40:58 CET 2006

"Juan C. Sanchez-DelBarrio" <carlos.sanchez at> wrote:
> I propose the following patch to use EAP-TTLS+PAP+LDAP with CRYPT
> PASSWORD. This feature would permit us to cipher the plain password in
> LDAP using CRYPT hash and compare the CRYPT hash of user password from
> LDAP with PAP authentication (crypt).

  Why?  The server already supports pulling the crypt'd password from
LDAP, and comparing it to the users password via rlm_ldap.

  Alan DeKok.
--       - The web site of the book - The blog

More information about the Freeradius-Devel mailing list