A Method for Changing Cleartext Passwords in the Extensible Authentication Protocol

Document Type Expired Internet-Draft (individual)
Last updated 2011-03-07
Stream (None)
Intended RFC status (None)
Expired & archived
plain text pdf html bibtex
Stream Stream state (No stream defined)
Consensus Boilerplate Unknown
RFC Editor Note (None)
IESG IESG state Expired
Telechat date
Responsible AD (None)
Send notices to (None)

This Internet-Draft is no longer active. A copy of the expired Internet-Draft can be found at


The Extensible Authentication Protocol (EAP) provides support for multiple authentication methods. One such method is Generic Token Card (EAP-GTC) which, despite its name, is commonly used to support authentication using cleartext passwords in tunneled EAP methods. EAP-GTC does not provide the ability to change a password (for example, an expired password), however. This document defines the PassWord Change EAP method (EAP-PWC) in order to fill that void in functionality.


Glen Zorn (gwz@net-zen.net)

(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid.)