When authenticating local users with Radius connecting using WinBox, RouterOS uses CHAP authentication method. But when authenticating local user who are using telnet or SSH, RouterOS uses PAP authentication method. Is there any specific reason for that?
I upgraded freeradius to latest version, and found that local users are able to login via WinBox, but not telnet or SSH. It turns out that
pap {
encryption_scheme = crypt
}
should be now
pap {
encryption_scheme = clear
}
For telnet and SSH logins to work with freeradius
Just wanted to post since that might save someone some time.
Best regards,
Vyacheslav