EAP-TTLS + Post-auth clear password

Erico Augusto ericosign at yahoo.com.br
Wed Mar 21 21:06:42 CET 2007


Hi,

I would like to send clear-text password at post-auth using eap-ttls. is there a way?
I'm avoiding to write a lot of details about the question. Just using post-auth I got to send User-password attribute, but it's cyphered at destination(Yes, there is all the TLS tunneling stuff, but I'm trying to see the problem at a simpler-unknown perspective).

I'm using SecureW2 as supplicant(PAP), freeradius-1.1.2+jradius patch.

Thanks a lot.

Erico.


----- Mensagem original ----
De: Nick Owen <nowen at wikidsystems.com>
Para: FreeRadius users mailing list <freeradius-users at lists.freeradius.org>
Enviadas: Quarta-feira, 21 de Março de 2007 16:45:43
Assunto: Re: Apache2 - PAM - freeRADIUS - users

On 3/21/07, Helmut Tröbs <Helmut.Troebs at lrz-muenchen.de> wrote:
> Hello Michael,
>
> >>
> >>  freeRADIUS works quite good and it's possible to authenticate via PAM,
> >> for example local logins, ssh-logins, su, chsh, gdm, ... are working
> >> quite fine.
> >>
> >> The only thing is the htaccess from apache2 which will not work. The
> >> Radius gets the request and permits the user:
> >
> >   I would suggest finding out why Apache is requiring more from PAM than
> > everyone else does.  It's not really a pam_radius problem, because it
> > works with everything else.
> >
>
>
> we had similar problems with radius and Apache2 (it is not a RADIUS/PAM
> problem!) PAM didn't work for us neither, so a colleague found another
> radius module for Apache 2:
>
> http://www.outoforder.cc/projects/apache/mod_auth_xradius/
>
> But it only works with Apache 2.0.x. With Apache 2.2.x we didn't manage
> to get any radius authentication working.

I got apache <-> radius working with mod_auth_xradius with apache-2.2.2 on FC6.

a very basic how-to is here:
http://www.howtoforge.com/apache_radius_two_factor_authentication

hth.

nick

-- 
Nick Owen
WiKID Systems, Inc.
404.962.8983 (desk)
404.542.9453 (cell)
http://www.wikidsystems.com
At last, two-factor authentication, without the hassle factor
Now open source: http://sourceforge.net/projects/wikid-twofactor/

- 
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html






__________________________________________________
Fale com seus amigos  de graça com o novo Yahoo! Messenger 
http://br.messenger.yahoo.com/ 
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.freeradius.org/pipermail/freeradius-users/attachments/20070321/bfab8235/attachment.html>


More information about the Freeradius-Users mailing list