Expired unix system passwords

James Smallacombe up at 3.am
Tue Oct 6 19:56:44 CEST 2009


Has anyone had any luck getting FreeRadius to recognise expired Linux 
system passwords as defined in /etc/login.defs ?  sshd and imapd honors 
it, but FreeRadius does not.  It appears enabled by default...is there 
anything else that needs to be done on the FreeRadius server config?  On 
the NAS?

TIA,

On Wed, 30 Sep 2009, James Smallacombe wrote:

>
> Hi:
>
> We have a client running FreeRadius 2.1.6 on a Linux box authenticating 
> against shadow passwords.  I've gone over the radiusd.conf and it appears 
> that the expire module is enabled by default in the global config (there are 
> no virtual servers here).  However, FreeRadius appears to be ignoring this 
> attribute and authenticating users with expired passwords anyway.  I tried 
> expiring the account and that worked, but it would be much better to have it 
> respect expired passwords.
>
> Is there something I missed?
>
> TIA,
>
> James Smallacombe		      PlantageNet, Inc. CEO and Janitor
> up at 3.am							    http://3.am
> =========================================================================
>

James Smallacombe		      PlantageNet, Inc. CEO and Janitor
up at 3.am							    http://3.am
=========================================================================



More information about the Freeradius-Users mailing list