rlm_passwd help

David Brodrick David.Brodrick at csiro.au
Wed Apr 17 06:16:25 CEST 2013

I got there. I added authtype = PAP to the passwd module configuration 
and then DEFAULT Auth-Type = PAP to users.

I had tried this earlier but there was a trailing delimiter in the local 
password file which wasn't in the format and this seems to have caused 
the password verification to fail which threw me off.

David Brodrick wrote:
> Hi,
> We're experimenting with freeradius for authenticating users in a 
> custom application. It was straightforward to get this authenticating 
> against the OS:
> DEFAULT  Auth-Type = System
> But what we want to do is maintain a list of usernames and crypt 
> passwords in an external file, separate to the operating system users. 
> The rlm_passwd module should do what we want but I'm having some 
> trouble getting it to work.
> In the radiusd.conf modules section I have:
>        passwd our_passwd {
>                filename = /tmp/testpwd
>                format = "*User-Name:Crypt-Password"
>                hashsize = 100
>                ignorenislike = no
>                allowmultiplekeys = no
>        }
> In sites-enabled/default I added "our_passwd" to the authorize section.
> I think that part is essentially working and on my random walks 
> running freeradius -X it looks like it is reading our passwd file 
> okay. The thing I do not understand is what to put as the Auth-Type in 
> the users file in order to authenticate against our file rather than 
> against the OS?
> Any advice would be greatly appreciated.
> Thanks,
>  Dave
> -
> List info/subscribe/unsubscribe? See 
> http://www.freeradius.org/list/users.html

More information about the Freeradius-Users mailing list