Yes, you were right, FreeRADIUS docs did contain info on CHAP-Passwords. And it seems to be working now ! :-) Now, my LDAP database holds the clear text passwords, and upon reciving the CHAP-Password field in ohphone's endpoint authentication request, FreeRADIUS authenticates the endpoints using the cleartext passwords. Thanks a ton Saket On Tue, 2004-07-06 at 14:20, Zygmuntowicz Michal wrote: > Then there is not choice but to use CHAP-Password. If LDAP cannot > support it, then you have to use some other module. Or maybe just storing > passwords elsewhere (a file, an sql database) may help. FreeRADIUS docs > may contain further info on this subject. > Alternatively, you can use RadAliasAuth, but this is not probably what you want. > > ----- Original Message ----- > From: "Saket Sathe" <saket@xxxxxxxxxxxxx> > Sent: Tuesday, July 06, 2004 9:21 AM > > > > Currently I am using RadAuth itself, > > > > My conf file looks like this: > > [Gatekeeper::Main] > > Fourtytwo=42 > > > > [GkStatus::Auth] > > KeyFilled=11 > > gkadmin=xIPXHCRLH2altxSB8Y/HJQ== > > rule=password > > > > [RoutedMode] > > GKRouted=1 > > CallSignalPort=0 > > AcceptUnregisteredCalls=1 > > #SupportNATedEndpoints=1 > > H245Routed=1 > > Q931PortRange=30000-30199 > > H245PortRange=30200-30399 > > > > [RadAuth] > > Servers=localhost:1812 > > SharedSecret=testing123 > > > > [RadAcct] > > Servers=127.0.0.1:1813 > > SharedSecret=testing123 > > > > [Gatekeeper::Auth] > > RadAuth=required;RRQ,ARQ > > > > On Tue, 2004-07-06 at 03:41, Zygmuntowicz Michal wrote: > > > That's interesting - it seems like LDAP (in contrary to SQL) > > > module cannot deal with User-Password attribute. I'll think > > > about an option for RadAliasAuth module to generate CHAP-Password > > > instead of User-Password. > > > In meantime - maybe you can use RadAuth module instead? > > > > > > ----- Original Message ----- > > > From: "Saket Sathe" <saket@xxxxxxxxxxxxx> > > > Sent: Monday, July 05, 2004 11:30 PM > > > > > > > > > > I've setup FreeRADIUS with LDAP. I've made sure that they both are > > > > interacting correctly using the 'radtest' test client that comes with > > > > FreeRADIUS. > > > > > > > > Now when I try to authenticate gnugk's users with it. FreeRADIUS > > > > produces an error saying that: > > > > > > > > rlm_ldap: Attribute "User-Password" is required for authentication. > > > > Cannot use "CHAP-Password". > > > > modcall[authenticate]: module "ldap" returns invalid > > > > > > > > How can I possibly deal with it ? > > > > > > > > Thanks, > > > > Saket > > > > ------------------------------------------------------- > This SF.Net email sponsored by Black Hat Briefings & Training. > Attend Black Hat Briefings & Training, Las Vegas July 24-29 - > digital self defense, top technical experts, no vendor pitches, > unmatched networking opportunities. Visit www.blackhat.com > > _______________________________________________________ > > List: Openh323gk-users@xxxxxxxxxxxxxxxxxxxxx > Archive: http://sourceforge.net/mailarchive/forum.php?forum_id=8549 > Homepage: http://www.gnugk.org/ ------------------------------------------------------- This SF.Net email sponsored by Black Hat Briefings & Training. Attend Black Hat Briefings & Training, Las Vegas July 24-29 - digital self defense, top technical experts, no vendor pitches, unmatched networking opportunities. Visit www.blackhat.com _______________________________________________________ List: Openh323gk-users@xxxxxxxxxxxxxxxxxxxxx Archive: http://sourceforge.net/mailarchive/forum.php?forum_id=8549 Homepage: http://www.gnugk.org/
