FreeRADIUS/pam_radius

Request: add option to configure password prompt?

sj opened this issue · 1 comments

sj commented

Hi,

I'm using Freeradius to provide a one-time-password verification service to a group of servers. My servers are accessible through ssh keys (without interacting with Freeradius), but if someone attempts an interactive password login, he first needs to provide a valid OTP (which is checked by the remote Freeradius server through pam_radius_auth), followed by the system (shadow) password. This works great, with a small issue: both the pam_radius_auth password prompt and shadow prompt are "Password:", which makes people forget that they're supposed to provide a OTP.

Might it be possible to add an option to pam_radius_auth that configures the password prompt? I could then set that to "Radius OTP:".

Thanks!

This was done here #8