Christophe Saillard <[EMAIL PROTECTED]> wrote: > Here's what I want to do : > > - EAP-TTLS or PEAP authentication with login/password in the second > phase (no EAP-TLS) > - Users are stored in the local Freeradius Database with Crypt-password > attributes (MD5 hashed, because logins and passwords come from a Unix User > Database)
You will only be able to use PAP inside of the tunnel. See the FAQ, for PAP & CHAP issues. The same text applies here. > I've succeed with PEAP/MSCHAPv2 authentication but my password was in > clear-text (with Meetinghouse Aegis Client)... If you put the password in the server in clear-text, that works. Crypt'd passwords won't work. Ever. Alan DeKok. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html