Lotus Notes Encryption

rrperez rrperez at apc.edu.ph
Wed Aug 18 05:08:26 CEST 2010


I have set up a FreeRadius 2 Server that authenticates on a Lotus Notes LDAP
Service and it successfully maps. But I'm having a hard time figuring out
what is the encryption method used by the Lotus Notes with their passwords.

Here is the debug:

[ldap] performing user authorization for jeff.barron
[ldap]  expand: %{Stripped-User-Name} -> 
[ldap]  expand: %{User-Name} -> jeff.barron
[ldap]  expand: (uid=%{%{Stripped-User-Name}:-%{User-Name}}) ->
(uid=jeff.barron)
[ldap]  expand: O=SMPHI -> O=SMPHI
rlm_ldap: ldap_get_conn: Checking Id: 0
rlm_ldap: ldap_get_conn: Got Id: 0
rlm_ldap: performing search in O=SMPHI, with filter (uid=jeff.barron)
[ldap] looking for check items in directory...
rlm_ldap: userPassword -> User-Password == "(GeKF3TVTM9/uS9vzA/dB)"
[ldap] looking for reply items in directory...
[ldap] user jeff.barron authorized to use remote access
rlm_ldap: ldap_release_conn: Release Id: 0
++[ldap] returns ok
++[expiration] returns noop
++[logintime] returns noop
++[pap] returns updated
Found Auth-Type = PAP
!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
!!!    Replacing User-Password in config items with Cleartext-Password.    
!!!
!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
!!! Please update your configuration so that the "known good"              
!!!
!!! clear text password is in Cleartext-Password, and not in User-Password.
!!!
!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
+- entering group PAP {...}
[pap] login attempt with password "jbp at ssw0rd"
[pap] Using clear text password "(GeKF3TVTM9/uS9vzA/dB)"
[pap] Passwords don't match


Can anyone tell me what encryption is this and what suitable protocol can I
use?
-- 
View this message in context: http://old.nabble.com/Lotus-Notes-Encryption-tp29449703p29449703.html
Sent from the FreeRadius - User mailing list archive at Nabble.com.




More information about the Freeradius-Users mailing list