-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
> -----Original Message----- > From: Artur Hecker [mailto:[EMAIL PROTECTED] > Sent: 18 November 2003 15:49 > To: [EMAIL PROTECTED] > Subject: Re: Authentication against /etc/shadow using ... > > > salut > > > > No, CHAP, and MS-CHAP (the inner authentication method used > with PEAP) > > require clear text passwords. Therefore, the shadow > password file is not > > compatible with these methods. This bit me to start with. > > so, there is no PAP for PEAP? Not if you use an MS client, which is the most convincing reason to do so. ;-) Regards, Guy > > You could always try TTLS with SYSTEM as the inner > authentication mechanism? > > Alan is a strong proponent of TTLS vs PEAP, and I have to > say that in a > > purist sense, he's absolutely right. Unfortunately, the > two largest players > > in the market have used (two incompatible versions of) PEAP > :-(. This means > > that it is more trivial, particularly with Microsoft based > clients, to use > > PEAP/MS-CHAPv2. > > well, one thing is for sure: TTLS supports PAP as the inner > authentication method. > > > ciao > artur > > > > - > List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html -----BEGIN PGP SIGNATURE----- Version: PGP 8.0 iQA/AwUBP7pAsY3dwu/Ss2PCEQI0UQCfdwp2VP0JbZvrockuDpNgCyYYETwAn3jM jY49iDOiK2chLJfsISuEvWGi =Elbt -----END PGP SIGNATURE----- - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html