From owner-freebsd-questions@FreeBSD.ORG  Thu Dec  1 00:46:52 2011
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id 81FC3106566C
	for <freebsd-questions@freebsd.org>;
	Thu,  1 Dec 2011 00:46:52 +0000 (UTC) (envelope-from bc979@lafn.org)
Received: from zoom.lafn.org (zoom.lafn.org [108.92.93.123])
	by mx1.freebsd.org (Postfix) with ESMTP id 0E41A8FC0C
	for <freebsd-questions@freebsd.org>;
	Thu,  1 Dec 2011 00:46:51 +0000 (UTC)
Received: from [10.0.1.2] (pool-108-23-64-87.lsanca.fios.verizon.net
	[108.23.64.87]) (authenticated bits=0)
	by zoom.lafn.org (8.14.3/8.14.2) with ESMTP id pB10EV87033375;
	Wed, 30 Nov 2011 16:14:32 -0800 (PST) (envelope-from bc979@lafn.org)
Mime-Version: 1.0 (Apple Message framework v1251.1)
Content-Type: text/plain; charset=iso-8859-1
From: Doug Hardie <bc979@lafn.org>
In-Reply-To: <CAKYr3zwMRf8z=nP4Zx8XrBmRc=aw-SCjbx0JPF_PDO7viqs3rQ@mail.gmail.com>
Date: Wed, 30 Nov 2011 16:14:31 -0800
Content-Transfer-Encoding: quoted-printable
Message-Id: <4C32A057-A1CA-4509-B6A1-B6E947BBFF98@lafn.org>
References: <4ED6A6E7.4030503@paz.bz>
	<CAKYr3zwMRf8z=nP4Zx8XrBmRc=aw-SCjbx0JPF_PDO7viqs3rQ@mail.gmail.com>
To: Outback Dingo <outbackdingo@gmail.com>
X-Mailer: Apple Mail (2.1251.1)
X-Virus-Scanned: clamav-milter 0.97 at zoom.lafn.org
X-Virus-Status: Clean
Cc: Jim Pazarena <fquest@paz.bz>, freebsd-questions@freebsd.org
Subject: Re: freeradius on freebsd
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Thu, 01 Dec 2011 00:46:52 -0000


On 30 November 2011, at 15:13, Outback Dingo wrote:

> On Wed, Nov 30, 2011 at 4:57 PM, Jim Pazarena <fquest@paz.bz> wrote:
>> I am having issues with freeradius being told
>> system passwords are incorrect by freebsd, where I
>> know they are not wrong.
>>=20
>> I think it relates to freeradius submitting crypt passwords
>> while freebsd defaults to MD5.
>>=20
>> Has anyone encountered this issue on FreeBSD? Seems the
>> freeradius newsgroup doesn't have any freebsd active
>> participants.
>>=20
>> Could someone suggest how to coax freeradius to submit
>> MD5 encrypted passwords to the system?
>=20
> in short your probably better off putting a db on the backend of
> freeradius instead of
> using system accounts, itll be alot easier that way and can be managed
> separate from
> the systems accounts

I have been using freeradius with FBSD for years with the system =
passwords.  Works just fine.  Saves you a lot of hassle and extra work =
in some cases.  Freeradius just passes along what it receives to the =
authentication mechanism.  Any encryption is done at the NAS.  You may =
want to run with -X and save all the output.  That will show where the =
problem is occurring.  Even if you go with a database you have to get =
the encryption in the database the same as what the NAS is doing.