NT Passwords

Alan DeKok aland at deployingradius.com
Tue Dec 18 08:45:06 CET 2007

Andreas Moroder wrote:
> According to radiusd.conf
> #Note that NT-Passwords MUST be stored as a 32-digit hex
> #  string, and MUST start off with "0x", such as:

  In 1.1.7, that's no longer necessary.  The "pap" module will take care
of fixing any issues with NT-Password.  But it *must* be listed last in
the "authorize" section, as shown in the default radiusd.conf.

> The problem is that samba itself and othe management tools like webmin
> store the NT and the LM password as 32.digit hex string but without the
> 0x. I tried to add the 0x but the logon to main domain does not work
> with this added.

  Don't add the 0x.  It will work.

  Alan DeKok.

More information about the Freeradius-Users mailing list