Man page - rlm_digest(5)

Packages contains this manual

Package:  freeradius-common
apt-get install freeradius-common

Manuals in package:
• rlm_attr_filter(5)
• radlast(1)
• radwho(1)
• radrelay.conf(5)
• rlm_detail(5)
• rlm_unix(5)
• rad_counter(1)
• radiusd.conf(5)
• rlm_always(5)
• unlang(5)
• radzap(1)
• radcrypt(8)
• rlm_mschap(5)
• rlm_files(5)
• rlm_digest(5)
• rlm_sql(5)
• clients.conf(5)
• dictionary(5)
• radeapclient(1)
• radsqlrelay(8)
• rlm_realm(5)
• raddebug(8)
• rlm_ippool_tool(8)
• radsniff(8)
• radrelay(8)
• rlm_unbound(5)
• radclient(1)
• rlm_chap(5)
• radmin(8)
• rlm_passwd(5)
• rlm_sqlippool_tool(8)
• smbencrypt(1)
• rlm_counter(5)
• rlm_expr(5)
• rlm_idn(5)
• users(5)
• rlm_pap(5)
• radtest(1)
• checkrad(5)
• freeradius(8)
Documentations in package:
• freeradius-common

Manual

rlm_digest

NAME
DESCRIPTION
CONFIGURATION
EXAMPLES
SECTIONS
FILES
AUTHOR

---

NAME

rlm_digest - FreeRADIUS Module

DESCRIPTION

The rlm_digest module authenticates RADIUS Access-Request packets that contain Cisco SIP digest authentication attributes. The module should be listed in the authorize and authenticate sections of radiusd.conf .

CONFIGURATION

The digest module requires no additional configuration items. When it is being used to authenticate requests, however, it does require access to the clear-text password for the user. Hashed passwords are not acceptable, and will not work.

EXAMPLES

Add the following lines to the top of your ’raddb/users’ file:

#---

		test	Auth-Type := Digest, User-Password = "test"
			Reply-Message = "Hello, test with digest"

#---

Once the server has been started (debugging mode is recommended), use ’ radclient to send the following packet to the server:

$ radclient -f digest localhost auth testing123

Where ’digest’ is a file containing:

User-Name = "test",
Digest-Response = "631d6d73147add2f9e437f59bbc3aeb7",
Digest-Realm = "testrealm",
Digest-Nonce = "1234abcd",
Digest-Method = "INVITE",
Digest-URI = "sip:5555551212@example.com",
Digest-Algorithm = "MD5",
Digest-User-Name = "test",
Message-Authenticator = ""

You should see the authentication succeed.

SECTIONS

authorize, authenticate

FILES

/etc/freeradius/3.0/radiusd.conf, draft-sterman-aaa-sip-00.txt

AUTHOR

Alan DeKok <aland@ox.org>

---