Implementating Ldap userPassword in crypt/sha password with eap ttls mschapv2 /eap peap mschapv2

A.L.M.Buxey at lboro.ac.uk A.L.M.Buxey at lboro.ac.uk
Mon Feb 23 10:28:58 CET 2015


Hi,

> Hello everyone,
> I installed freeradius 2.2.6, and I try to Implement an ldap server, however this ldap password server are "crypt" and "SHA".
> 
>  My question is: 
> 
> Would it be possible to implemente ldap with word passes into crypt/sha, with authentication method  EAP TTLS mschapv2 / EAP peap mschapv2 ?

no.

docs: http://deployingradius.com/documents/protocols/oracles.html


for EAP-TTLS/PAP this will work. however, for EAP-TTLS/MSCHAPv2 or EAP-PEAP/MSCHAPv2 you will need
plain passwords or NT-HASH passwords

alan


More information about the Freeradius-Users mailing list