I would like to use encrypted passwords stored as an attribute value in
LDAP. How can I tell the rlm_digest driver to use the complete User-Password
attribute value as the full Digest-HA1 string? Instead it takes the value
and appends it to the end of the of the A1 string. Please help.
~Alan
Alan [EMAIL PROTECTED] wrote:
I would like to use encrypted passwords stored as an attribute value in
LDAP. How can I tell the rlm_digest driver to use the complete User-Password
attribute value as the full Digest-HA1 string?
You don't. In version 1.1.1, you use the Digest-HA1 attribute.
In order to avoid confusion, you might want to store a 'digestHA1'
LDAP attribute in your LDAP directory, and tell FreeRADIUS to map this
attribute to Digest-HA1 by inserting this line in you ldap.attrmap
file :
checkItem Digest-HA1 digestHA1
Note that you *must* store a 32 bytes text
3 matches
Mail list logo