Authentication using postfix user password

Tanya Muluw tanya.muluw at gmail.com
Tue Sep 16 21:26:27 CEST 2008


On Tue, Sep 16, 2008 at 11:20 PM, Alan DeKok <aland at deployingradius.com> wrote:
> Tanya Muluw wrote:
>> Since most users of our organization have mail account in our postfix
>> mail server, I tried to use postfix user password that stored in mysql
>> for authentication.  Therefore there will be two types of user, i.e
>> users with postfix user password (encrypted password)
>
>  That's the key.
>
>> I inserted a user in radcheck with cleartext password, and a user from
>> postfix mysql mailbox table. So my radcheck is :
>>
>> +-----+----------+---------------+----+------------------------------------+
>> | id  | username | attribute     | op | value                              |
>> +-----+----------+---------------+----+------------------------------------+
>> | 223 | testman  | User-Password | := | 123456                             |
>> | 225 | testman1 | User-Password | := | $1$bbf49e0f$MAcN54vB4L0wcKuYOCnQv/ |
>> +-----+----------+---------------+----+------------------------------------+
>
>  Some changes:
>
> testman - use "Cleartext-Password", not "User-Password"
> testman1 - use "Crypt-Password", not "User-Password"
>
>> Test for user with postfix user password was unsuccessful
>
>  Because it was comparing "123456" to the "$1$..." string.  They're not
> the same.
>
>  The server needs to encrypt "12345" and then compare the encrypted
> string to "$1$...".  Using "Crypt-Password" tells the server to do this.
>
>  Alan DeKok.
> -
> List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
>

Thank you very much for your prompt response, Alan.  You are very
helpful.  It is works now.

Thank you very much.

Best Regards

TM



More information about the Freeradius-Users mailing list