[Serusers] How to do RADIUS authentication with hashed password (MD5 or HA1)?

Cheng Zhang czhang.cmu at gmail.com
Fri Oct 14 17:16:55 CEST 2005


Fortunately Philippe Sultan on freeradius-users list has a patch to solve my
problem.

Philippe's reply is attached below:
------ Forwarded Message
From: Philippe Sultan <philippe.sultan at gmail.com>
Reply-To: FreeRadius users mailing list
<freeradius-users at lists.freeradius.org>
Date: Wed, 12 Oct 2005 09:50:35 +0200
To: FreeRadius users mailing list <freeradius-users at lists.freeradius.org>
Subject: Re: Question on FreeRADIUS digest authentication with SIP proxy

Hi, Chen.

There is ongoing discussion on this topic :

http://lists.freeradius.org/pipermail/freeradius-users/2005-October/047606.h
tml

You might also want to check this, for information related to digest
authentication with RADIUS and LDAP :

http://www-rocq.inria.fr/who/Philippe.Sultan/Asterisk/asterisk_sip_external_
authentication.html

Bye,

Philippe
------ End of Forwarded Message

I tested Philippe's patch and it works for me. :-)
For people using Gentoo, I created this enhancement bug (
http://bugs.gentoo.org/show_bug.cgi?id=109003) to help out a bit.

-- Cheng

On 10/11/05, Jan Janak <jan at iptel.org> wrote:
> On 11-10-2005 21:17, Cheng Zhang wrote:
> > I have setup SER to authenticate via FreeRADIUS with MSSQL DB. The
> > problem is that the user's password is stored as cleartext in the
> > database. I'd like to know is there a way to make such setup using
> > hashed password (just MD5 or HA1)?
>
>  No, that is not possible, freeradius needs cleartext passwords.
>
>    Jan.
>


More information about the sr-users mailing list