802.1x ->Radius ->Ldap
Alan DeKok
aland at deployingradius.com
Fri Jun 18 21:50:52 CEST 2010
Kyle Plimack wrote:
> I added an entry to ldap.attrmap, “checkItem Cleartext-Password
> userPassword”
> The Password is not cleartext, but I read somewhere that radius is
> supposed to figure that out automatically from a header. This is what
> is returned:
>
> rlm_ldap: userPassword -> Cleartext-Password ==
> "{SSHA}xQjX16XbCUSXpiR2y****************"
It is impossible to do MS-CHAP with SSHA passwords.
http://deployingradius.com/documents/protocols/compatibility.html
Alan DeKok.
More information about the Freeradius-Users
mailing list