eap-ttls + PAP using Crypt-Password obtained by ldap

Vladimir Vuksan vlists at veus.hr
Thu Aug 11 16:46:02 CEST 2005


Florian Prester wrote:

> ist it possible to authenticate an user with eap-ttls using PAP with 
> an Crypt-Password?
> The Crypt-Password is obtained by an LDAP-Server.
>
> I can do eap-ttls using MD5/PAP with an cleartext Password.

Yes you can, however you have to configure your clients to use TTLS+PAP. 
Otherwise they will default to TTLS+MSCHAPv2 which will not work with 
crypted password. Here is a HOWTO on configuring TTLS+PAP

http://vuksan.com/linux/dot1x/wpa-client-config.html

Vladimir



More information about the Freeradius-Users mailing list