Radius MFA authentication to CA PAM fails with passwords longer than 48 characters

book

Article ID: 223937

calendar_today

Updated On:

Products

CA Privileged Access Manager (PAM)

Issue/Introduction

When we use Radius for authentication we have found that valid passwords larger than 48 characters fail to authenticate using CA PAM but work in other applications

Cause

CA PAM was using an older radius libray which limited its ability to use larger passwords

Environment

Release : 3.4 and 4.0

Component : PRIVILEGED ACCESS MANAGEMENT

Resolution

Issue is resolved in CA PAM 4.0.1 and 3.4.6 adding support for up to 128 bytes in the radius authentication