Translate authentication requests
Alan DeKok
aland at deployingradius.com
Fri Sep 23 21:19:04 CEST 2016
On Sep 23, 2016, at 2:45 PM, Laurens Vets <laurens at daemon.be> wrote:
> Thank you for your quick response! The clients are macOS Sierra and iOS 10, so it will be a bit difficult to update...
Yes,
> What would be the best way to handle user passwords in this scenario?
Use clear-text passwords.
> What I'm trying to achieve is a safe password storage/management, i.e. if the userdb gets stolen. Clearly cleartext password and NT hash are not sufficient in this situation.
a) use clear-text passwords, and keep your database secure
b) use EAP-TLS, and client certificates, with no passwords
Alan DeKok.
More information about the Freeradius-Users
mailing list